Hi all, I''ve set up iptables to mark all the packets coming from a particular host on my network. But I''m not sure whether my packets are getting marked or not. Does iptables provides any way to the packets which are getting marked (or any other way which makes sure that the packets are getting marked)? Please help thanks, Pawan ___________________________________________________ Download the hottest & happening ringtones here! OR SMS: Top tone to 7333 Click here now: http://sms.rediff.com/cgi-bin/ringtone/ringhome.pl _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Depends what you mean by checking for marked packets. The netfilter "mark" is only is a logical mark, in that the packet doesn''t actually get changed with a mark, so if you''re expecting to see any changes with TCPDUMP or similar you''re not going to see any changes to the packet. The mark value is only used by other hook listeners to recognise a particular flow, it''s only relevant within the netfilter and TC frameworks. Hope this helps, Andrew. ----- Original Message ----- From: "pawan gupta" <pawan_comp@rediffmail.com> To: <lartc@mailman.ds9a.nl> Sent: Thursday, July 24, 2003 3:27 PM Subject: [LARTC] marking packets problem: iptables> Hi all, > > I''ve set up iptables to mark all the packets coming from > a particular host on my network. But I''m not sure whether my > packets are getting marked or not. Does iptables provides any > way to the packets which are getting marked (or any other way > which makes sure that the packets are getting marked)? > > > Please help > > thanks, > Pawan > > > ___________________________________________________ > Download the hottest & happening ringtones here! > OR SMS: Top tone to 7333 > Click here now: > http://sms.rediff.com/cgi-bin/ringtone/ringhome.pl > > > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Hi Pawan yes you can check the packets are marked or not by giving iptables -xvnL and see any packets marked hare ----- Original Message ----- From: "pawan gupta" <pawan_comp@rediffmail.com> To: <lartc@mailman.ds9a.nl> Sent: Thursday, July 24, 2003 10:57 AM Subject: [LARTC] marking packets problem: iptables> Hi all, > > I''ve set up iptables to mark all the packets coming from > a particular host on my network. But I''m not sure whether my > packets are getting marked or not. Does iptables provides any > way to the packets which are getting marked (or any other way > which makes sure that the packets are getting marked)? > > > Please help > > thanks, > Pawan > > > ___________________________________________________ > Download the hottest & happening ringtones here! > OR SMS: Top tone to 7333 > Click here now: > http://sms.rediff.com/cgi-bin/ringtone/ringhome.pl > > > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Thursday 24 July 2003 07:27, pawan gupta wrote:> Hi all, > > I''ve set up iptables to mark all the packets coming from > a particular host on my network. But I''m not sure whether my > packets are getting marked or not. Does iptables provides any > way to the packets which are getting marked (or any other way > which makes sure that the packets are getting marked)?You can check the iptables counters to see if the iptables rules are matched. Stef -- stef.coene@docum.org "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.oftc.net _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/