Having trouble getting my routing rules to work. Basically, I just want to
lock a connection to use a single network interface. The common and only
method (compatible with IP forwarding) seems to be using CONNMARK to keep
track of the interface each connection is assigned to.
However, for some reason, it appears the Linux IP routing table is not
correctly processing the fwmark rules:
12: from all fwmark 0xa lookup inet_sbc
Both inet_sbc and main tables have a default route set. If I prepend "prohibit
default" into *either* of the tables (main or inet_sbc), the packet is
dropped. Since a packet only has a single route, this suggests that Linux is
doing two routing lookups, and only processing the fwmark rules in the first
one (which, if not an error, is ignored and overridden by the later lookup).
Any other possibilities, suggestions, ideas, or fixes? Or should I post more
details?
Thanks,
Luke-Jr (CC replies please)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
