Hi,
I had kernel 2.4.25 with patch-o-matic and ipt_time worked ok.
After upgrade it to 2.4.31-rc1 (with pom-ng-20050529 - latest available
then, but since then there weren't changes in "time") and patched
iptables-1.2.9 from Fedora3 (recompiled with the same pom).
Everything seemed ok, but recently I noticed that (after upgrade)
iptables stopped counting packets in rules with "time".
Sample rule (I haven't changed it in meantime):
$IPT -t mangle -A FORWARD -i $INTERNAL_ETH -s $SOME_INTERNAL_IP -m time
--timestart 8:49 \
--timestop 23:59 --days Mon,Tue,Wed,Thu,Fri,Sat,Sun -j MARK --set-mark 102
Module is loaded and used:
[root@koles rc.d]# lsmod | grep time
ipt_time 1976 2 (autoclean)
ip_tables 14784 11 [ipt_time ipt_MARK ipt_LOG ipt_limit
iptable_mangle iptable_nat ipt_REJECT ipt_state iptable_filter]
Rule is in mangle (but nothing catch with "time"):
[root@koles rc.d]# iptables -L -t mangle -v
(...)
0 0 MARK all -- eth0 any $SOME_IP anywhere
TIME from 8:49 to 23:59 on Sun,Mon,Tue,Wed,Thu,Fri,Sat MARK set 0x100
After remove "time" from rule everything is ok.
Do you have any idea what could be wrong?
Thanks for help
Marcin
