22.12.2012 17:19, Jamal Hadi Salim пишет: > From the description Jan provided in his response, I dont > think this used to work at all. Are you saying it worked before? no. i'm trying if this can work, alas. it can't. > Having said that, what you are doing sounds so useful > that we need to make it work ;-> But it appears like > we need a brand new action for it, something like > GetMarkFromConntrack. maybe ifb device can be made more friendly to iptables ? for a sample, run some (or all?) nefilter hooks before qdisc, like on a normal interface ? -- Linux registered user #402966 // pub 1024D/E99AF373 <pgp.mit.edu> -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
