--- Rob Sterenborg <rob@xxxxxxxxxxxxxxx> wrote: > On Tue, May 9, 2006 07:37, Sagara Wijetunga wrote: > > Hi all > > > > I'm trying to prioritize the out going SIP related > > traffic from my desktop computer. > > > > I tried: > > > > iptables -t mangle -A POSTROUTING -m helper > --helper \ > > sip -m state --state ESTABLISHED,RELATED \ > > -j ... > > > > It simply doesn't detect SIP related traffic! > > Perhaps only NEW traffic passes the mangle table, > just like the nat table.. If > that is the case, ESTABLISHED and RELATED packets > are (probably) treated the > same way as the NEW packet. > But, I'm not sure about this.. Did you test that ? > iptables -t mangle -A POSTROUTING \ -p udp --dport 5060 \ -j <mark packets> Tcpdump shows entire SIP communication is marked up to the last ACK packet. This shows packets related to an ESTABLISHED connection goes thru the mangle table. Iptables man page doesn't say any restriction. Regards Sagara __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
