Re: CONNMARK save-mark and restore-mark not working ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Vinod Chandran wrote:
> >   iptables -t mangle -A OUTPUT -j MARK --set-mark 9
> >   iptables -t mangle -A OUTPUT -j CONNMARK --save-mark
> Here the mark value of the packet is set to 9, which will be saved 
> to be used as conntrack mark for all the packets coming after this.

It isn't being saved.  The --save-mark does nothing.  It changes
nothing in any of my ip_conntrack lines:

   # grep 'mark=9' /proc/net/ip_conntrack
   #

That sounds broken, right?

Linux elm 2.6.10-1mdk #2 Sat Jan 29 13:10:11 EST
2005 i686 AMD Athlon(tm) XP 3200+ unknown GNU/Linux

-- 
-IAN!  Ian! D. Allen   Ottawa, Ontario, Canada
       EMail: idallen@xxxxxxxxxx   WWW: http://www.idallen.com/
       College professor (Linux) via: http://teaching.idallen.com/
       Support free and open public digital rights:  http://eff.org/
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux