It occurs to me that one can do better, but I am not sure how a Debian package might do the following:
1. create an additional routing table (/etc/iproute/rt_table) 2. add the default route via iodine to that table 3. add a routing policy rule to route packages fwmarked 53 based on that additional table 4. tell iptables to mangle/mark outgoing packets to port 53 with fwmark 53. The problem is that this needs modification of /etc/iproute/rt_table and also iptables, and we don't have policies for either of those on Debian. The second example on http://www.linuxhorizon.ro/iproute2.html illustrates the idea. I think you don't need two additional tables for this case. -- .''`. martin f. krafft <madd...@d.o> Related projects: : :' : proud Debian developer http://debiansystem.info `. `'` http://people.debian.org/~madduck http://vcs-pkg.org `- Debian - when you have better things to do than fixing systems
digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)
