MARK and ! question: one more question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello.

Yesterday you helped me with my question:

iptables -t mangle -N setmark
iptables -t mangle -A setmark -s   193.220.70.0/27  -j RETURN
iptables -t mangle -A setmark -s   193.108.240.0/22 -j RETURN
iptables -t mangle -A setmark -d ! 193.220.70.32/27 -j RETURN
iptables -t mangle -A setmark -j MARK --set-mark 107
iptables -t mangle -A POSTROUTING -j setmark

It makes logic: NOT from src1 AND NOT from src2 AND dst=some_dst_addr THEN mark packet with 107

Can you help me to construct logic: (from src1 OR from src2) AND dst=some_dst_addr THEN mark packet with 108
Possible form: (from src1 OR from src2 OR from src3 OR ... and so on) AND dst=some_dst_addr THEN mark packet with 108

Can you give me an example with above networks? - i mean packets with
(src=193.220.70.0/27 or with src=193.108.240.0/22) and dst=193.220.70.32/27 will be marked with 108.

Your help is very, very appreciated.
Thanks in advance.

Best regards,
Ruslan




[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux