Comments on: IPTables: Fun with MARK http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/ random stuff from the mind of a twenty-something professional geek Sun, 18 Dec 2011 16:02:34 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Andy Smith http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/comment-page-1/#comment-14664 Andy Smith Fri, 04 Nov 2011 11:53:56 +0000 http://andys.org.uk/bits/?p=10#comment-14664 I wasn't aware of that - thanks! For anyone else: http://ipset.netfilter.org/ Andy. I wasn’t aware of that – thanks!

For anyone else: http://ipset.netfilter.org/

Andy.

]]> By: Andy Smith http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/comment-page-1/#comment-14663 Andy Smith Fri, 04 Nov 2011 11:53:09 +0000 http://andys.org.uk/bits/?p=10#comment-14663 Hi Carl, Just had a quick look and --set-xmark is mentioned in the iptables manpage - it states that it zeroes out the bits given by the mask and XORs in the value given. Andy. Hi Carl,

Just had a quick look and –set-xmark is mentioned in the iptables manpage – it states that it zeroes out the bits given by the mask and XORs in the value given.

Andy.

]]> By: Iptables MARK http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/comment-page-1/#comment-14595 Iptables MARK Wed, 02 Nov 2011 15:44:37 +0000 http://andys.org.uk/bits/?p=10#comment-14595 [...] to this: http://andys.org.uk/bits/2010/01/27/...fun-with-mark/ It says: "The MARK target lets us set a 32-bit value (or 0xFFFFFFFF) on a packet, which we [...] [...] to this: http://andys.org.uk/bits/2010/01/27/…fun-with-mark/ It says: "The MARK target lets us set a 32-bit value (or 0xFFFFFFFF) on a packet, which we [...]

]]> By: Carl http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/comment-page-1/#comment-12760 Carl Fri, 26 Aug 2011 15:20:42 +0000 http://andys.org.uk/bits/?p=10#comment-12760 Hey, I'm learning/researching IPtables and a little confused. I have found documentation on the option --set-mark, but nothing on --set-xmark as used in your example here. I have seen examples like --set-mark 12/8 where the 1100 is masked by 1000 to result in 1000, but your example seems to be different. As best I can figure out, if both examples are correct, --set-mark ANDs with the mask and --set-xmark XORs with the mask - is that what is happening here? Thanks - Hey,

I’m learning/researching IPtables and a little confused. I have found documentation on the option –set-mark, but nothing on –set-xmark as used in your example here.

I have seen examples like –set-mark 12/8 where the 1100 is masked by 1000 to result in 1000, but your example seems to be different.

As best I can figure out, if both examples are correct, –set-mark ANDs with the mask and –set-xmark XORs with the mask – is that what is happening here?

Thanks -

]]> By: Sehcel http://andys.org.uk/bits/2010/01/27/iptables-fun-with-mark/comment-page-1/#comment-2047 Sehcel Tue, 07 Sep 2010 13:14:35 +0000 http://andys.org.uk/bits/?p=10#comment-2047 Hi. Have you ever heard about ipsets? Hi. Have you ever heard about ipsets?

]]>