hello,
i’m looking for a thourogh explanation of connection mark and flow mark.
some examples use connection marks and combine them in another rule into a flow mark, some are using flow marks directly and another one states that in NAT’ed situation flow marks could not be used.
so i’m a little confused about that subject 
tia.
matthias
Just “mark-conecction” mark the connection (wow nice explication :roll: ) the sync/ack, and flow-mark mark the traffic.
Some example is traffic shaping for masq. You can mark the connection and then mark the flow of this conection.
I hope that you understand me.
thanks, so connection-mark marks connections and flow-marks marks a flow. i thought as much
but seriously, i liked to know what the differences are on a thourough technical level.
regards
matthias