Hi, I've setup a routing based only on fwmarks with iproute 2 and discovered a Problem with UDP Packets. I mark the packets in the PREROTUING Chain, that works great for tcp, but for UDP Packets i have to mark them in the POSTROUTING Chain also. It seems that the UDP Packets "loose" their mark somewhere. iptables -A PREROUTING -t mangle -p udp -s xxx.xxx.xxx.xxx -d 0/0 -j MARK --set-mark 1 doesn't work. iptables -A PREROUTING -t mangle -p udp -s xxx.xxx.xxx.xxx -d 0/0 -j MARK --set-mark 1 iptables -A POSTROUTING -t mangle -p udp -s xxx.xxx.xxx.xxx -d 0/0 -j MARK --set-mark 1 works. Greets, Tom Fischer
