thr3ads.net - Shorewall users - [Shorewall-users] Mark ACKs [Dec 2002]

If this information is useful, please help other people find it:
Share via:

Morbid Angel

2002-Dec-13 08:05 UTC

[Shorewall-users] Mark ACKs

Hi all
 
I have a question:
 
How can I add this rule in shorewall?:
 
Iptables -A POSTROUTING -t mangle -o ppp0 -p tcp -m length -length :64
-j MARK -set-mark 10
 
TiA

Tom Eastep

2002-Dec-13 15:40 UTC

head link

[Shorewall-users] Mark ACKs

--On Friday, December 13, 2002 09:05:17 AM +0100 Morbid Angel 
<mangel@gmx.de> wrote:
>
>
> Hi all
>
>
>
> I have a question:
>
>
>
> How can I add this rule in shorewall?:
>
>
>
> Iptables --A POSTROUTING --t mangle --o ppp0 --p tcp --m length --length
> :64 --j MARK --set-mark 10
>
>
>
While the subject of your post says "Mark ACKs", the rule above does 
something different; it is marking all short packets (which will include 
ACK packets). You can still place that rule in /etc/shorewall/start 
replacing the "Iptables" (Sic) with "run_iptables".

Looks like you are installing someone''s traffic-shaping script. I 
personally use Wondershaper which gives priority to short packets without 
having use any iptables commands - there''s a link from my traffic 
control/shaping page.

-Tom
--
Tom Eastep   \ Shorewall - iptables made easy
Shoreline,    \ http://shorewall.sf.net
Washington USA \ teastep@shorewall.net

Shorewall users - Dec 2002 - Mark ACKs

[Shorewall-users] Mark ACKs

[Shorewall-users] Mark ACKs