dear all,
I want to set a mark to a packet when the packet come into a linuxbox, then check
the mark to decide how to deal with the packet, but i'm so fool that i don't know how
to check the mark, i think set mark rule should like this:
iptables -t mangle -A PREROUTING -s 192.168.0.1 -j MARK --set-mark 0x01
iptables -t nat -A PREROUTING -m MARK --check-mark ! 0x01 -j DROP
iptables -t filter -A FORWARD -m MARK --check-mark ! 0x01 -j DROP
is it right?
my english is so poor, hehe, wish you can understander my words, thank all friends
here.
best regards
liliaoyuan
