un hint: nu mi-a mers daca tineam regulile in diferite chainuri. hai ca las de la mine.. din colectia "works for me (tm)":
blah blah.... echo "Building iptables chains/policies.." iptables -t mangle -N mark_horiz_src iptables -t mangle -N mark_horiz_dst iptables -t mangle -A POSTROUTING -d 172.16.1.0/24 -j mark_horiz_src iptables -t mangle -A POSTROUTING -s 172.16.1.0/24 -j mark_horiz_dst echo "Importing new man classes.." mipclasses -s mark_horiz_src -d mark_horiz_dst -m 1 < /root/ipclasses.bgp | iptables-restore -n #extern iptables -t mangle -A POSTROUTING -d 172.16.1.15 -m mark --mark 0x0 -j CLASSIFY --set-class 0x1:0x30 iptables -t mangle -A POSTROUTING -s 172.16.1.15 -m mark --mark 0x0 -j CLASSIFY --set-class 0x2:0x30 #man iptables -t mangle -A POSTROUTING -d 172.16.1.15 -m mark --mark 0x1 -j CLASSIFY --set-class 0x1:0x24 iptables -t mangle -A POSTROUTING -s 172.16.1.15 -m mark --mark 0x1 -j CLASSIFY --set-class 0x2:0x24 blah blah... bine.. partea cu "...-m mark --mark 0x0..." e poveste ca by default pachetu e marcat cu 0 bafta On Tue, 28 Sep 2004 09:19:50 +0300 (EEST), Radu Radoveneanu <[EMAIL PROTECTED]> wrote: > > yoyo said: > > eu am facut cu tc doar clasele si las iptables sa-mi clasifice (btw. > > totul se face in postrouting si merge) > > > > > blavo, la mine nu mere :) > > -- > save the ozone layer > > > > --- > Detalii despre listele noastre de mail: http://www.lug.ro/ > > -- To mess up a Linux box, you need to work at it; to mess up your Windows box, you just need to work on it. --- Detalii despre listele noastre de mail: http://www.lug.ro/
