On Sat, 14 Mar 2009, Pascal Hambourg wrote:
J.O. Aho a écrit :
On Tue, 3 Feb 2009, Pascal Hambourg wrote:
> J.O. Aho a écrit :
> >
> > iptables -t mangle -A OUTPUT -p tcp --dport 20:21 -j TOS --set-tos 16
> > Keep in mind that ipt_TOS has been merge into xt_dscp and modinfo on
> > xt_dscp gives an alias list with ipt_tos.
> Since kernel 2.6.25, ipt_TOS has been merged into xt_DSCP (target), not
> ipt_dscp (match).
So back to my question, how to rewrite the rule to work with target
instead of the old match?
You do not have to rewrite the rule. But since the TOS target is now handled
by the xt_DSCP kernel module, you must have this module enabled in your
kernel configuration (CONFIG_NETFILTER_XT_TARGET_DSCP=y or m).
Thanks for the reply, I was so sure that I had enabled the module when I
built the kernel, but I guess I checked the kernel config for a virtual
machine.
--
//Aho
------------------------------------------------------------------------
E-Mail: trizt@xxxxxxxxx URL: http://www.kotiaho.net/~trizt/
ICQ: 13696780 Skype: jo_aho
System: Linux System (PPC7447/1000 AMD K8/2500)
------------------------------------------------------------------------
EU forbids you to send spam without my permission
------------------------------------------------------------------------
