>The Extended MARK Target is irrelevant -- nothing in Shorewall currently uses >it and detection and reporting of that capability are removed in Shorewall >3.0. > Does "iptables -j CONNMARK --help" display CONNMARK-related help? > -Tom Tom: Thanks for the reply
That command includes the following: CONNMARK target v1.3.3 options: --set-mark value[/mask] Set conntrack mark value --save-mark [--mask mask] Save the packet nfmark in the connection --restore-mark [--mask mask] Restore saved nfmark value Richard > -----Original Message----- > From: Richard Amerman > Sent: Monday, October 24, 2005 2:46 PM > To: [email protected] > Subject: [leaf-user] CONNMARK in uClibc > > > I'm trying to use the Shorewall load balencing per: > http://www.shorewall.net/Shorewall_and_Routing.html#id2460800 > > I can't get connmark to load properly. > > I have the rc1 build and made sure I have both the upper and > lower case ipt_connmark.o files, in my case, from the CD ISO. > > I have both connmark modules loaded (I assume, I see no > kernel messages positive or negative) > > I tried them in either order. > > I'm loading them after all the other ipt_ modules. > > When I restart shorewall I still get: > > Extended MARK Target: Not available > CONNMARK Target: Not available > Connmark Match: Available > ------------------------------------------------------- This SF.Net email is sponsored by the JBoss Inc. Get Certified Today * Register for a JBoss Training Course Free Certification Exam for All Training Attendees Through End of 2005 Visit http://www.jboss.com/services/certification for more information ------------------------------------------------------------------------ leaf-user mailing list: [email protected] https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
