search for: outif

...k with success. This leads me to believe that my kernel is OK and that I have another problem. problem description - - - - - - - - - - I have marked packets using ipchains, created another routing table, and populated that routing table with a single route. # ipchains -I output 1 -p tcp -s $OUTIF $PORT -d $CLIENT -m 8 -j ACCEPT # ip rule add from $OUTIF fwmark 8 lookup 8 # ip route add $CLIENT via $GW dev eth0 table 8 # ip route flush cache When I inspect the counters on the chains, I notice that the chain I insert is actually in use (the counter does increment). The problem is that the...

...ule add iif lo lookup $other But the side effects are tremendous. All of the processes on this box suddenly start using the $other routing table (exactly as I told them to!), which is not what I desire. If I try marking the special locally generated packets with # ipchains -I input -p tcp -s $OUTIF $PORT -d $ALL -m $other -j ACCEPT nothing changes. The return traffic ends up flowing out my main link according to my main routing table. When I look at the ipchains HOWTO on how packets traverse filters, http://www.tldp.org/HOWTO/IPCHAINS-HOWTO-4.html#ss4.1 I fear that the routing decisio...