Hi Jo! On Thu, Apr 28, 2016 at 03:03:49PM +0200, Jo-Philipp Wich wrote: > my stomach feeling tells me that this is okay but can you elaborate on > the change?
Currently all marking always happends in the PREROUTING chain. This doesn't catch locally generated traffic and thus also doesn't allow using match extensions like cgroup, owner or socket which are useful e.g. to re-route traffic from a specific local process (eg. dnsmasq). Similar to the rules in other tables, I'd assume that rules without any source should affect locally generated traffic and thus MARK rules should end up in the mangle table's OUTPUT chain in that case. Cheers Daniel _______________________________________________ openwrt-devel mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
