layer7 problem

Antonio Pérez aperlu at telefonica.net
Wed Aug 24 02:54:48 CEST 2005


Hello,
I want to use layer7 in my linux box. I have the 2.6.12.5 kerner version 
and the 1.3.3 iptables version. I patched the kernel and the iptables 
with kernel-2.6.11-layer7-1.4.patch, linux-2.6.9-imq1.diff, 
iptables-1.3.0-imq1.diff and iptables-layer7-1.4.patch.
When i run:
iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j MARK 
--set-mark 3
no error show, but when i do:
iptables -t mangle -L -v
pkts bytes target     prot opt in     out     source               
destination
    0     0 MARK       all  --  any    any     anywhere             
anywhere            LAYER7 l7proto http MARK set 0x3
the packets marked always is 0.

I followed this howto http://l7-filter.sourceforge.net/HOWTO.

Have somebody any idea?
Thanks, and sorry for my bad english.



More information about the netfilter mailing list