Am Mittwoch 16 August 2006 00:09 schrieb Marek Kierdelewicz: > > #port range 27020:27039, protocol tcp > > > > #iptables -t mangle -A POSTROUTING -p tcp --dport 27020:27039 -j > > CLASSIFY --set-class 1:10 > > tc filter add dev ppp0 protocol ip parent 1: prio 1 u32 match ip > > dport 27020 0x13 match ip protocol 6 0xff flowid 1:10 > > My choice would be fw filter: > iptables -t mangle -A POSTROUTING -p tcp --dport 27020:27039 -j MARK > --set-mark 0x10 > tc filter add dev ppp0 protocol ip parent 1:0 prio 1 handle 0x10 fw > classid 1:10 Ah, thats what you mean. Tried to avoid iptables at all... Thx, will try that tomorrow.
> > > #port range 27000:27015, protocol udp > > > > #iptables -t mangle -A POSTROUTING -p udp --dport 27000:27015 -j > > CLASSIFY --set-class 1:10 > > tc filter add dev ppp0 protocol ip parent 1: prio 1 u32 match ip > > dport 27000 0x21 match ip protocol 17 0xff flowid 1:10 > > iptables -t mangle -A POSTROUTING -p udp --dport 27000:27015 -j MARK > --set-mark 0x10 > > (filter same as above...only one needed) > tc filter add dev ppp0 protocol ip parent 1:0 prio 1 handle 0x10 fw > classid 1:10 > > Hope that helps. > > cheers greets Julius _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
