On Mon, Jun 22, 2009 at 02:38:50PM -0700, Tom Eastep wrote: > Lennart Sorensen wrote: > > > I still can't figure out why iptables accepts hex values for --tos when > > it seems to object to anything other than the standard 5 values). > > Maybe I have too old an iptables or 2.6.26 is too old a kernel. > > > > gateway:~# iptables -t mangle -N foo > gateway:~# iptables -t mangle -A foo -m tos --tos 0x14/0x1c > gateway:~#
# iptables -t mangle -A foo -m tos --tos 0x14/0x1c iptables v1.3.6: Bad TOS value `0x14/0x1c' Try `iptables -h' or 'iptables --help' for more information. So which version of iptables do I need to actually get decent tos support? 1.4.x maybe? Of course --dscp nicely supports the dscp named classes, which is rather nice. -- Len Sorensen ------------------------------------------------------------------------------ Are you an open source citizen? Join us for the Open Source Bridge conference! Portland, OR, June 17-19. Two days of sessions, one day of unconference: $250. Need another reason to go? 24-hour hacker lounge. Register today! http://ad.doubleclick.net/clk;215844324;13503038;v?http://opensourcebridge.org _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
