> I'm sorry. I tried to read and understand your problem several times but > I'm lost. Can you explain a bit more what the problem is? oh, of course. in short terms: if using the inbuilt "ip rule add from .." directive of iproute for advanced routing everything is working fine. but if i try to use netfilter marks to do the exact same thing using "ip rule add fwmark ..." outgoing packets find their way through my routing stuff and out of the net, but incoming replies just get lost between PREROUTING and FORWARD, probably during the routing process, for just no reason and without any icmp error messages or something.
