| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 9 Apr 2007 12:19:32 -0400 From: lsorense@...lub.uwaterloo.ca (Lennart Sorensen) To: Patrick McHardy <kaber@...sh.net> Cc: W Agtail <wagtail@....ie>, netdev@...r.kernel.org Subject: Re: two gateways with one NIC On Mon, Apr 09, 2007 at 06:13:50PM +0200, Patrick McHardy wrote: > As the name suggests, POSTROUTING comes after routing, so marking > packets there doesn't affect routing. Use PREROUTING for forwarded > traffic and OUTPUT for locally generated traffic. I didn't even notice that had been changed. It used to say PREROUTING when it was for --dport, and all I suggested changing was --dport to --sport and change the -o part (probably to nothing at all really since routing hasn't been decided yet). Yes it absolutely has to be done PREROUTING. -- Len Sorensen - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists