Just for port 80 for now.
MANGLE
Code: Select all
chain=prerouting src-address=10.20.64.14 protocol=tcp dst-port=80
dst-address-list=!mreza action=mark-connection new-connection-mark=www
passthrough=yes
1 chain=prerouting connection-mark=www action=mark-packet
new-packet-mark=wwwpaket passthrough=no
2 chain=prerouting src-address=10.20.64.14 protocol=tcp dst-port=!80
dst-address-list=!mreza action=mark-connection
new-connection-mark=netprio passthrough=yes
3 chain=prerouting connection-mark=netprio action=mark-packet
new-packet-mark=prioritetnet passthrough=no
Code: Select all
name="www" dst-address=0.0.0.0/0 interface=all parent=none
packet-marks=wwwpaket direction=both priority=1 queue=default/default
limit-at=0/0 max-limit=0/0 total-queue=default-small
1 name="NET_PRIO" dst-address=0.0.0.0/0 interface=all parent=none
packet-marks=prioritetnet direction=both priority=3
queue=default/default limit-at=0/0 max-limit=0/0
total-queue=default-small
there I put rules for packets going from internet to my proxy at address 10.20.64.14
here are these rules.
MANGLE
Code: Select all
0 chain=postrouting dst-address=10.20.64.14 protocol=tcp src-port=80
src-address-list=!twi action=mark-connection
new-connection-mark=www passthrough=yes
1 chain=postrouting connection-mark=www action=mark-packet
new-packet-mark=wwwpaket passthrough=no
2 chain=postrouting dst-address=10.20.64.14 protocol=tcp src-port=!80
src-address-list=!twi action=mark-connection
new-connection-mark=http passthrough=yes
3 chain=postrouting connection-mark=http action=mark-packet
new-packet-mark=httppaket passthrough=no
Code: Select all
name="www" dst-address=0.0.0.0/0 interface=all parent=none
packet-marks=wwwpaket direction=both priority=1
queue=ethernet-default/ethernet-default limit-at=0/0 max-limit=0/0
total-queue=default-small
1 name="http" dst-address=0.0.0.0/0 interface=all parent=none
packet-marks=httppaket direction=both priority=5 queue=default/default
limit-at=0/0 max-limit=0/0 total-queue=default-small