Hello, I am attempting to match on a single bit of the NF mark value, and after hours of reading and googling I can not get the syntax right. It got to be something very simple, yet I can''t find it. Any help will be greatly appreciated. Thanks! root@Arzamas:/etc/init.d# tc filter add dev wan_b protocol ip prio 2 parent 1:0 basic match meta\(nf_mark mask 0x80 eq 0x80\) flowid 1:0x80 RTNETLINK answers: No such file or directory We have an error talking to the kernel root@Arzamas:/etc/init.d# root@Arzamas:/etc/init.d# tc qdisc show dev wan_b qdisc htb 1: r2q 10 default 2 direct_packets_stat 0 root@Arzamas:/etc/init.d# root@Arzamas:/etc/init.d# tc class show dev wan_b class htb 1:10 parent 1:1 prio 2 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:1 root rate 8000Mbit ceil 8000Mbit burst 1000999b cburst 1000999b class htb 1:20 parent 1:1 prio 4 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:2 root prio 0 rate 8000Mbit ceil 8000Mbit burst 1000999b cburst 1000999b class htb 1:30 parent 1:1 prio 5 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:40 parent 1:1 prio 6 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:50 parent 1:1 prio 7 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:8 parent 1:1 prio 1 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:80 parent 1:1 prio 1 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:18 parent 1:1 prio 3 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:28 parent 1:1 prio 5 rate 80000bit ceil 8000Mbit burst 1609b cburst 1000999b class htb 1:38 parent 1:1 prio 5 rate 40000bit ceil 8000Mbit burst 1604b cburst 1000999b class htb 1:48 parent 1:1 prio 6 rate 40000bit ceil 1200Kbit burst 1604b cburst 1749b class htb 1:58 parent 1:1 prio 7 rate 40000bit ceil 1200Kbit burst 1604b cburst 1749b root@Arzamas:/etc/init.d#
Peter Rabbitson wrote:> Hello, > > I am attempting to match on a single bit of the NF mark value, and after > hours of reading and googling I can not get the syntax right. It got to > be something very simple, yet I can''t find it. Any help will be greatly > appreciated. >Hmm wouldn''t something like: tc filter add dev eth0 proto ip prio 1 parent 1:0 u32 match mark 0x80 0x80 flowid 1:1 suffice ?> > root@Arzamas:/etc/init.d# tc filter add dev wan_b protocol ip prio 2 > parent 1:0 basic match meta\(nf_mark mask 0x80 eq 0x80\) flowid 1:0x80 > RTNETLINK answers: No such file or directory > We have an error talking to the kernelAre required modules loaded and/or options compiled ? The syntax seems fine.
Michal Soltys wrote:> Peter Rabbitson wrote: >> Hello, >> >> I am attempting to match on a single bit of the NF mark value, and >> after hours of reading and googling I can not get the syntax right. It >> got to be something very simple, yet I can''t find it. Any help will be >> greatly appreciated. >> > > Hmm > > wouldn''t something like: > > tc filter add dev eth0 proto ip prio 1 parent 1:0 u32 match mark 0x80 > 0x80 flowid 1:1 > > suffice ? >It certainly will, granted you have to know that u32 actually supports it (for more than 3 years now). Thanks a ton for the pointer! P.S. Sigh... tc is such a mess...