On Thu, 2004-08-26 at 23:26, Jason Opperisano wrote: > > I have been trying various set of rules in various table in order to have packets go over > > the right link. ie. packet's src add should match outgoing link's ip address.YET, there > > iptables -t mangle -A PREROUTING -j CONNMARK --restore-mark > > iptables -t mangle -A PREROUTING -m mark ! --mark 0 -j ACCEPT > > iptables -t mangle -A PREROUTING -m mark ! --mark 0 -p icmp -j MARK --set-mark 1 > > iptables -t mangle -A PREROUTING -m mark ! --mark 0 -j MARK --set-mark 2 There's something weird here : -m mark ! --mark 0 at each line you should better do -m mark --mark 0 at the two last lines. BR, -- Eric Leblond <eric@xxxxxx> INL
Attachment:
signature.asc
Description: This is a digitally signed message part
