ROUTE woes ?

Jan Engelhardt jengelh at
Wed Aug 24 07:55:14 CEST 2005

>> gate:/usr/src# iptables -t mangle -A FORWARD -p tcp --dport 80 -j ROUTE --
>> oif eth2
>  It must be used on the POSTROUTING chain of the mangle table.

Hm this sounds somewhat illogical: to route when "routing has already been 
done" (latin: postrouting). It also requires to have something like:

	ipt -t mangle -A FORWARD -i eth1 -j MARK --set-mark 7
	ipt -t mangle -A POSTROUTING -m mark --mark 7 -j ROUTE

instead of just

	ipt -t mangle -A FORWARD -i eth1 -j ROUTE

Jan Engelhardt

More information about the netfilter mailing list