Hi Mamadou, >Is never match for the http downstream. And that make a sense because >the dport of the downstream is not 80. Try changing "dport 80" into "sport 80" in following command: >tc filter add dev eth2 protocol ip parent 1: prio 1 u32 match ip >dst 192.168.2.88/32 match ip protocol 6 0xff match ip dport 80 >0xffff flowid 1:8170 That should do it. Best regards, Marek -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
