On 08/11/2009 04:50 PM, Flaherty, Patrick wrote: > I don't > totally understand why it works, but after removing the -0 eth1 from the > FORWARD chain it works right.
So, I think what's going on is that IPTables moves a packet from one 'bucket' to another, depending on the mangling happening. So if your packet needs to go from A to B to C to D to E states to get from your input to your output, logically you're -i A and -o E, but no packet will ever match -i A and -o E simultaneously - iptables is concerned with the details, not the logical result. > #lets add some latency to eth1 so the connection feels crappier. > tc qdisc add dev eth1 root netem delay 1000ms This is pretty cool stuff. /me *makes evil plans*. :) -Bill -- Bill McGonigle, Owner BFC Computing, LLC http://bfccomputing.com/ Telephone: +1.603.448.4440 Email, IM, VOIP: b...@bfccomputing.com VCard: http://bfccomputing.com/vcard/bill.vcf Social networks: bill_mcgonigle/bill.mcgonigle _______________________________________________ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/
