ROUTE woes ?

Jan Engelhardt jengelh at linux01.gwdg.de
Wed Aug 24 07:55:14 CEST 2005


>> gate:/usr/src# iptables -t mangle -A FORWARD -p tcp --dport 80 -j ROUTE --
>> oif eth2
>
>  It must be used on the POSTROUTING chain of the mangle table.

Hm this sounds somewhat illogical: to route when "routing has already been 
done" (latin: postrouting). It also requires to have something like:

	ipt -t mangle -A FORWARD -i eth1 -j MARK --set-mark 7
	ipt -t mangle -A POSTROUTING -m mark --mark 7 -j ROUTE

instead of just

	ipt -t mangle -A FORWARD -i eth1 -j ROUTE


Jan Engelhardt
-- 



More information about the netfilter mailing list