[Bug 909] New: nat destroy packet mark
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Fri Feb 28 14:29:41 CET 2014
https://bugzilla.netfilter.org/show_bug.cgi?id=909
Summary: nat destroy packet mark
Product: netfilter/iptables
Version: unspecified
Platform: x86_64
OS/Version: Debian GNU/Linux
Status: NEW
Severity: blocker
Priority: P5
Component: NAT
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: seidl at resal.cz
Estimated Hours: 0.0
after packet traverse NAT could't use mark for filter/clasify
kernel 3.2.51
Linux 3.2.51 #1 SMP Mon Nov 25 17:59:38 CET 2013 x86_64 GNU/Linux
iptables iptables v1.4.14
when NAT/MASQUERADE enabled tc filter fw not recognize packet
tc -d -s filter show dev eth0
filter parent 1: protocol ip pref 1 fw
filter parent 1: protocol ip pref 1 fw handle 0x3e9 classid 1:1001
filter parent 1: protocol ip pref 1 fw handle 0x3eb classid 1:1003
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list