Karel Rericha wrote: > Hi Pablo and list, > > is there any way to delete mark from connection (all marks from all > connections) without deleting connection itself ? > > We are using iptables with > > ... -m mark ! --mark 0 -j CONNMARK --save-mark > > but we would like few times a day delete all marks from all > connections to let connections are marked again (with different marks > based on time). Conntrack-tools would have been fine tool for it, if > such option had been included. Or is there any other way to do it? When you mean "delete all marks", you refer to resetting the connection marks to zero? This command should be enough. # conntrack -U -m 0 -- "Los honestos son inadaptados sociales" -- Les Luthiers -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
