On Wednesday 2010-04-14 13:24, Patrick McHardy wrote: >>> So what about oif routing which I asked for two times? >> >> Guess it must have fallen off somewhere between the resends. We can >> still add it as a patch on top. > >Please add it before I apply it. Should be a fairly trivial change. > >>> I guess you'd usually have a host for logging or IDS somewhere on a >>> private network and TEE packets there. So specifying oif and gateway >>> seems most useful to me. >> >> The oif is already determined by the route to the gateway(logging >> host). I'd also fear that people abuse TEE as a ROUTE replacement >> when they see an --oif. > >That's something different. The oif forces use of a specific output >device, independant of the routing tables. F.i.: You should be able to use a specific output device by use of a routing table, and selecting that table with fwmark. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
