[Bug 909] New: nat destroy packet mark

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Fri Feb 28 14:29:41 CET 2014


https://bugzilla.netfilter.org/show_bug.cgi?id=909

           Summary: nat destroy packet mark
           Product: netfilter/iptables
           Version: unspecified
          Platform: x86_64
        OS/Version: Debian GNU/Linux
            Status: NEW
          Severity: blocker
          Priority: P5
         Component: NAT
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: seidl at resal.cz
   Estimated Hours: 0.0


after packet traverse NAT could't use mark for filter/clasify

kernel 3.2.51
Linux 3.2.51 #1 SMP Mon Nov 25 17:59:38 CET 2013 x86_64 GNU/Linux


iptables iptables v1.4.14

when NAT/MASQUERADE enabled tc filter fw not recognize packet

tc -d -s filter show dev eth0 
filter parent 1: protocol ip pref 1 fw 
filter parent 1: protocol ip pref 1 fw handle 0x3e9 classid 1:1001 
filter parent 1: protocol ip pref 1 fw handle 0x3eb classid 1:1003

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list