Source routing connmark

From NuclearCat's homepage

Jump to: navigation, search

*mangle
-A OUTPUT -j CONNMARK --restore-mark --nfmask 0xffffffff --ctmask 0xffffffff

*nat
-A PREROUTING -i eth0.50 -j CONNMARK --set-xmark 0x1/0xffffffff
-A PREROUTING -i eth0.50 -p tcp -j REDIRECT --to-ports 80

ip rule add fwmark 0x1 table 210
ip route add table 210 default via 10.0.1.67

Retrieved from "http://www.nuclearcat.com/mediawiki/index.php?title=Source_routing_connmark&oldid=635"

Views

Personal tools

Log in

Search

Toolbox