Traffic mangle in JUMP chain

fusion · January 5, 2008, 12:44pm

Hello, I have a problem with traffic mangle when I use JUMP for splitting rules for subnets.
Rules:
chain= prerouting action=jump jump-target=test src-address-list=x.x.x.x/24
chain=test action=mark-connection new-connection-mark=user-con passthrough=yes src-address=x.x.x.x
chain=test action=mark-packet new-packet-mark=user passthrough=yes connection-mark=user-con

Then I want to use QT. But this is not work. Down direction is not limited. When I move rules form “test” chain to “prerouting”, everything works fine.
Do anybody have some experience with this?

Thanks fo reply

Chupaka · January 6, 2008, 12:22am

when in ‘test’ chain, do counters increase on your rules? i don’t think, that ‘src-address-list=x.x.x.x/24’ is right. maybe ‘src-address=x.x.x.x/24’?

fusion · January 7, 2008, 10:58am

Yes, you are right. It was my mistake in write. Sure it have to be src-addres=x.x.x.x/x or src-address-list=test.list
Counters are increasing, but traffic is not limited in down direction. If you have MK box, you can try it yourself.