[OpenWrt-Devel] [PATCH] set mark for locally generated traffic in OUTPUT chain

Hans Dedecker dedeckeh at gmail.com
Thu Apr 28 09:57:31 EDT 2016


On Thu, Apr 28, 2016 at 3:31 PM, Daniel Golle <daniel at makrotopia.org> wrote:

> Hi Jo!
>
> On Thu, Apr 28, 2016 at 03:03:49PM +0200, Jo-Philipp Wich wrote:
> > my stomach feeling tells me that this is okay but can you elaborate on
> > the change?
>
> Currently all marking always happends in the PREROUTING chain. This
> doesn't catch locally generated traffic and thus also doesn't allow
> using match extensions like cgroup, owner or socket which are useful
> e.g. to re-route traffic from a specific local process (eg. dnsmasq).
> Similar to the rules in other tables, I'd assume that rules without any
> source should affect locally generated traffic and thus MARK rules
> should end up in the mangle table's OUTPUT chain in that case.
>
Indeed an extension which is very much appreciated as we have similar use
cases where we mark local traffic for routing decisions, etc ...

Hans

>
>
> Cheers
>
>
> Daniel
> _______________________________________________
> openwrt-devel mailing list
> openwrt-devel at lists.openwrt.org
> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.infradead.org/pipermail/openwrt-devel/attachments/20160428/573bc4a2/attachment.htm>
-------------- next part --------------
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel


More information about the openwrt-devel mailing list