DELETED

robfollett · September 8, 2005, 6:04pm

DELETED

apaluch · September 10, 2005, 5:44pm

Since you have this working I was wondering if I could ask youe assistance in mangling (before I mangel my Mikrotik router).

Trying to mark packets for policy routing but the mangle rule counter never increases.

I am trying to mark all packets coming in on a certain interface to a certain subnet to be marked.

Here is my rule, looks almost like your but doesn’t increase my counter:

[admin@bubbanet] ip firewall mangle> pr
Flags: X - disabled, I - invalid, D - dynamic
0 chain=prerouting in-interface=ether7 dst-address=207.xx.xx.64/26
action=mark-packet new-packet-mark=cogent

If I do nothing else I would expect the counter to increase whenever I ping 207.xx.xx.66, an IP in that range that is tied to one of my internal interfaces. I did setup a rule in forwards to allow all packets to that sugnet. If I use tools I can ping that IP internally

Maybe I’m misunderstanding how this is supposed to work.

Thanks!
Andy

apaluch · September 10, 2005, 7:35pm

Hmmm,

May have a routing problem. I tried mangling packets on an external interface and it was incrementing correctly. should have tried that before posting …

Andy