[ale] I need some help with iptables and cbq
James Sumners
james.sumners at gmail.com
Tue Sep 12 11:43:12 EDT 2006
Just to keep the information up-to-date. There was nothing wrong with
those original two "OTHER" rules. The problem was actually the rules
that started, and finished, the "Classes" section of the firewall.sh
script. For some reason I was still running kernel 2.6.8 when I
thought I had compiled, and was running, 2.6.17. So, packets were not
being marked and the marks were not being saved because CONNMARK
support was not present in the kernel.
On 9/11/06, James Sumners <james.sumners at gmail.com> wrote:
> Duh! `-p all' isn't a valid option. I suppose `-p ! icmp' will have to suffice.
>
> Thinking about the other problem some more, `-i eth+' would have
> worked just as well as `-i ! lo'.
>
> On 9/11/06, James Sumners <james.sumners at gmail.com> wrote:
> > Still haven't figured out the "OTHER" rules yet, though :(
>
>
> --
> James Sumners
> http://james.roomfullofmirrors.com/
>
> "All governments suffer a recurring problem: Power attracts
> pathological personalities. It is not that power corrupts but that it
> is magnetic to the corruptible. Such people have a tendency to become
> drunk on violence, a condition to which they are quickly addicted."
>
> Missionaria Protectiva, Text QIV (decto)
> CH:D 59
>
--
James Sumners
http://james.roomfullofmirrors.com/
"All governments suffer a recurring problem: Power attracts
pathological personalities. It is not that power corrupts but that it
is magnetic to the corruptible. Such people have a tendency to become
drunk on violence, a condition to which they are quickly addicted."
Missionaria Protectiva, Text QIV (decto)
CH:D 59
More information about the Ale
mailing list