I wonder if anybody has the experience using tc+iptables to shape the traffic of the container or k8s pod with flannel (vxlan backend)? I used iptables to add the mark for the packets sent by container/pod veth to associate the traffic to the tc classes created on the NIC. Unfortunately, it does not work. I wonder if the vxlan encapsulation copies the mark to the outer UDP?
