On Friday 2010-04-02 06:57, Marek Kierdelewicz wrote: > >>I am having a problem receiving marked packets from the mangle table in >>my filter table. I have: > >I think packets marked 0x1 in prerouting should never reach LOG & >ACCEPT rule because of the following rule before them: > >>-A INPUT -i eth1 -p udp -m udp --dport 4500 -j ACCEPT There is no such rule (given in the mail). >You can clear counters, feed some test traffic to the box and send me >counter information retrieved with following commands: >iptables -L -nv -t filter >iptables -L -nv -t mangle Use `iptables-save -c`, it's much more complete and better to parse because it does not try to make a pretty-print table that always wraps in e-mail anyway. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
