Thread: [Fwbuilder-discussion] Rules mark
Brought to you by:
mikehorn
From: Giovanni <gi...@ti...> - 2004-10-26 15:14:09
|
Hello, I'm using "FWBUILDER 2.0.3" and I'd like to know if it is possible to do rules as the following: # Tag Incoming IPSec Traffic. 'mark' sticks after processing. iptables -t mangle -A PREROUTING -i $EXTERNAL_INTERFACE -p esp -j MARK --set-mark 1 # Forward Authenticated Traffic to LAN. iptables -A FORWARD -i $EXTERNAL_INTERFACE -m mark --mark 1 -d $LAN_ADDRESSES -j ACCEPT Thanks Giovanni |
From: Vadim K. <va...@vk...> - 2004-10-26 18:21:07
|
target "MARK" is not supported yet On Oct 26, 2004, at 8:13 AM, Giovanni wrote: > Hello, > > I'm using "FWBUILDER 2.0.3" and I'd like to know if it is possible to=20= > do rules as the following: > > =A0 > > # Tag Incoming IPSec Traffic. 'mark' sticks after processing. > iptables -t mangle -A PREROUTING -i $EXTERNAL_INTERFACE -p esp -j=20 > MARK --set-mark 1 > > # Forward Authenticated Traffic to LAN. > iptables -A FORWARD -i $EXTERNAL_INTERFACE -m mark --mark 1 -d=20 > $LAN_ADDRESSES -j ACCEPT > > =A0 > > Thanks > > Giovanni= |