Laszlo Attila Toth wrote:
A userspace program may wish to set the mark for each packets its send
without using the netfilter MARK target. Changing the mark can be used
mark based routing without netfilter or for packet filtering.
It requires CAP_NET_ADMIN capability.
@@ -403,6 +403,7 @@ static void icmp_reply(struct icmp_bxm *icmp_param, struct sk_buff *skb)
{ .daddr = daddr,
.saddr = rt->rt_spec_dst,
.tos = RT_TOS(ip_hdr(skb)->tos) } },
+ .mark = sk->sk_mark,
This is useless, the icmp socket is not visible to userspace.
--- a/net/ipv4/ip_output.c
+++ b/net/ipv4/ip_output.c
> ...
What about IPv6?
-
To unsubscribe from this list: send the line "unsubscribe linux-arch" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
