[Bug 1452] New: Incorrect information in the iptables-extensions(8) man page

Thu Aug 20 16:08:36 CEST 2020

https://bugzilla.netfilter.org/show_bug.cgi?id=1452

            Bug ID: 1452
           Summary: Incorrect information in the iptables-extensions(8)
                    man page
           Product: iptables
           Version: unspecified
          Hardware: x86_64
                OS: All
            Status: NEW
          Severity: minor
          Priority: P5
         Component: iptables
          Assignee: netfilter-buglog at lists.netfilter.org
          Reporter: stolidmollusc at gmail.com

Created attachment 603
  --> https://bugzilla.netfilter.org/attachment.cgi?id=603&action=edit
Patch to fix misleading information in the iptables-extensions(8) man page

The iptables-extensions(8) man page states, in the section describing the MARK
target, that marks can be used for routing based on fwmark.  Then it adds:  "If
you plan on doing so, note that the mark needs to be set in the PREROUTING
chain of the mangle table to affect routing."

That last statement is untrue because marks set in the OUTPUT chain of the
mangle table can also affect routing of packets based on fwmark, provided those
packets originate from a local process rather than coming from a network
interface.

Attached is a suggested patch to fix the iptables-extensions(8) man page.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200820/ec0b3a65/attachment-0001.html>