J.O. Aho a écrit :
On Tue, 3 Feb 2009, Pascal Hambourg wrote:
J.O. Aho a écrit :
iptables -t mangle -A OUTPUT -p tcp --dport 20:21 -j TOS --set-tos 16
Keep in mind that ipt_TOS has been merge into xt_dscp and modinfo on
xt_dscp gives an alias list with ipt_tos.
Since kernel 2.6.25, ipt_TOS has been merged into xt_DSCP (target),
not ipt_dscp (match).
So back to my question, how to rewrite the rule to work with target
instead of the old match?
You do not have to rewrite the rule. But since the TOS target is now
handled by the xt_DSCP kernel module, you must have this module enabled
in your kernel configuration (CONFIG_NETFILTER_XT_TARGET_DSCP=y or m).
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
