On Fri, Oct 16, 1998 at 01:36:11PM +0200, Martin Mares wrote: > Hello! > > > Only tos set by input chain is taken into account, > > when selecting route. tos mangled by output chain can affect > > only queuing. > > > > If you want to route smartly packets, originated by your host, > > you have only two choices: > > > > 1. Fiddle with IP_TOS in applications. > > 2. Move all this smartness to router. > > The last variant is the only reasonable, because host must have > > routing table consisting only of one default route. > > Another one: Introduce a "local input" fw chain. That would not help. Either it would feed the finished packet to the firewall, when it is already too late, or an incomplete packet before the route is computed, but the firewall understandable can't cope with incomplete packets. TOS rewriting in the firewall is a nice hack for routers, but nothing more. -Andi - To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to [EMAIL PROTECTED]
