Casey Scott wrote:
Thanks for that link. I realized that I was marking on POSTROUTING rather than FORWARD. The correction solved the problem of throttling, however, I'd still like to know how to use tcpdump to verify the mark is being set.
You cannot. The mark is a kernel internal thingy. Tcpdump sees the packets "on the wire", the mask is long gone by that time.
HTH, M4 - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
