Re: CONNMARK save-mark and restore-mark not working ?

"Ian! D. Allen" <idallen@xxxxxxxxxx> · Sun, 20 Feb 2005 17:35:05 -0500

Ian! D. Allen wrote:
>     iptables -t mangle -A OUTPUT -j MARK --set-mark 9
>     iptables -t mangle -A OUTPUT -j CONNMARK --save-mark
> I get no marks at all in ip_conntrack.

Kernel bug.  Neither --save-mark nor --restore-mark work in my Mandrake
kernel.  My bug report is here:

    http://qa.mandrakesoft.com/show_bug.cgi?id=13845

The work-around is in the bug report.

-- 
-IAN!  Ian! D. Allen   Ottawa, Ontario, Canada
       EMail: idallen@xxxxxxxxxx   WWW: http://www.idallen.com/
       College professor (Linux) via: http://teaching.idallen.com/
       Support free and open public digital rights:  http://eff.org/