add chain=prerouting p2p=all-p2p action=mark-connection new-connection-mark=p2p-con passthrough=yes
add chain=prerouting connection-mark=p2p action=mark-packet new-packet-mark=p2p passthrough=no (all p2p)
add chain=prerouting protocol=tcp dst-port=53 action=mark-connection new-connection-mark=dns-con passthrough=yes
add chain=prerouting protocol=udp dst-port=53 action=mark-connection new-connection-mark=dns-con passthrough=yes
add chain=prerouting connection-mark=dns-con action=mark-packet new-packet-mark=dns passthrough=no (dns)
add chain=prerouting protocol=tcp dst-port=80 action=mark-connection new-connection-mark=http-con passthrough=yes
add chain=prerouting protocol=tcp dst-port=443 action=mark-connection new-connection-mark=http-con passthrough=yes
add chain=prerouting connection-mark=http-con action=mark-packet new-packet-mark=http passthrough=no(http, maybe you shoul add 8080 port also)
add chain=prerouting protocol=tcp dst-port=110 action=mark-connection new-connection-mark=email-con passthrough=yes
add chain=prerouting protocol=tcp dst-port=25 action=mark-connection new-connection-mark=email-con passthrough=yes
add chain=prerouting connection-mark=email-con action=mark-packet new-packet-mark=email passthrough=no (POP3S (secure) uses port 995, IMAP - 143, IMAPS - 993)
chain=prerouting action=mark-connection new-connection-mark=everything-con passthrough=yes
chain=prerouting connection-mark=everything-con action=mark-packet new-packet-mark=everything passthrough=yes (this should mark everything else)