> The problem isn't related to the mangle or mark thingies. > > It is the length match that is creating the problem. > the complete iptables filter is a bit longer. > And if I eliminate the length match & just do the same thing > without the length (a simple source ip & destination port) filter > everything works out fine.
<from earlier mail> > The command I use > > Iptables -I INPUT -m length --length 1400:1500 -j MARK --set-mark 10 > > But it gives me an error on the length stating no rule target match with > that name. > The iptables kernel module is located in /lib/iptables. Um...maybe that's because there is no -m length match rule? At least not according to man iptables on my RedHat 7.2 system. Maybe you need some add-on kernel modules/patches that aren't in the default kernel? Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________________________ Sponsored by: ThinkGeek at http://www.ThinkGeek.com/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
