Patrick McHardy schrieb:
> We support bitwise use of the mark everywhere in current kernels, so
> that shouldn't be a problem anymore.
For firewall mark based policy routing to work, one must still disable
rp_filter, because this lookup doesn't take the mark into account[1].
So this statement is not quite true, although I believe you are probably right
for this case.
BTW: This rp_filter=0 requirement isn't even officially documented
(e.g. in the LARTC).
Regards
Ingo Oeser
[1] But does take TOS into account for historic (???) reasons.
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
