On Apr 23, 2011, at 7:39 PM, Lee Brown wrote:
> I''m not convinced I have my tcrules correctly setup and looking at
the counters in the mangle table''s tcpost doesn''t really help
much as I can''t tell what is the final match.
> Is there a way to match packets in iptables based on the classifier? i.e.
so I can LOG packets classified with 1:18 for example.
> I can''t see anything in iptables, except matching connmark and
mark. The only thing mentioning classifier is setting it, nothing to match for
it.
There is no such match.
-Tom
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Fulfilling the Lean Software Promise
Lean software platforms are now widely adopted and the benefits have been
demonstrated beyond question. Learn why your peers are replacing JEE
containers with lightweight application servers - and what you can gain
from the move. http://p.sf.net/sfu/vmware-sfemails