Re: iptables mark target

To: debian-firewall@lists.debian.org
Subject: Re: iptables mark target
From: Blair L Strang <bls@nanocorp.net.nz>
Date: Thu, 11 Nov 2004 10:08:00 +1300
Message-id: <41928330.6000000@nanocorp.net.nz>
In-reply-to: <200411102036.05717.sunnyboyfrank@web.de>
References: <200411102036.05717.sunnyboyfrank@web.de>

Frank Remetter wrote:

Hey,
i use the mark target for outbound shaping, but i am not sure, wether thechain will be left if a rule matches or not. In other words in whichdirection do i have to set up the rules?
first match apply oder last match?


The whole table is traversed[1], in the order that "iptables -t mangle
-L" lists the rules.  The last rule to mark a given packet wins.

Regards,

    Blair.

[1] Unless you use a '-j RETURN' target in your rules.

Reply to:

Follow-Ups:
- Re: iptables mark target
  - From: Blair L Strang <bls@nanocorp.net.nz>

References:
- iptables mark target
  - From: Frank Remetter <sunnyboyfrank@web.de>

Prev by Date: iptables mark target
Next by Date: Re: iptables mark target
Previous by thread: iptables mark target
Next by thread: Re: iptables mark target
Index(es):
- Date
- Thread