On 4/5/11 4:09 PM, lanas wrote: > > tcrules > > #MARK SOURCE DEST PROTO DEST SOURCE > 2 0.0.0.0/0 192.168.2.2 tcp - 80 > 3 0.0.0.0/0 192.168.2.2 tcp - 3000
You are marking in the PREROUTING chain; from the generated Netfilter rules, I can see that MARK_IN_FORWARD_CHAIN=No in shorewall.conf. You must mark in the FORWARD or POSTROUTING chain because marks set in PREROUTING are cleared after routing occurs. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Xperia(TM) PLAY It's a major breakthrough. An authentic gaming smartphone on the nation's most reliable network. And it wants your games. http://p.sf.net/sfu/verizon-sfdev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
