> OK. You mean when doing MARK in mangle for ping a -> b, you see both > ping and pong on ppp4 but the pongs get dropped somewhere between > PREROUTING and FORWARD. When you remove the MARK from netfilter then > all works fine?? nonono, the marking isnt the problem. but first: for marking i use: "iptables -t mangle -A PREROUTING -i eth4 -s 192.168.0.22 -d 141.24.12.2 -j MARK --mark-with 1" for selecting a routing table upon that marking i use: "ip rule add fwmark 1 table test" while table test has a local network route, a host route to the ppp peer and a default route to the internet over the ppp peer as gateway. the main table is the same but using another ppp interface. all the other tables only differ only in the way out, but all include the route to the one and only local net. back to the problem: the marking doesnt seem to be the problem. if i let the marking stay and just remove the upon routing rule and replace it with: "ip rule add from 192.168.0.22 table test" then everything works absolutely fine. so i think its something with the iproute trying to use the firewall mark what drops the packet, because it seems to disappear while beeing routed.
