[LARTC] tcng questions: TCP_ACK, ebtables
james at teyandei.net
james at teyandei.net
Wed Jan 4 19:17:17 CET 2006
Hi all,
I have a couple of questions regarding tcng behavior.
First - I want to mark TCP_ACK packets as high priority, a common case. I
figured the tcp_ACK rule in fields4.tc would be enough but I've come
across Jason Boxman's tutorial and he recommends using:
class( <$ack> )
if ip_len < 64 &&
ip_hl == 0x5 &&
(raw[33].b >> 4) & 0xff;
So basically the tcp_ACK rule doesn't work? Has it been fixed? Which way
is right?
Secondly - I was wondering if anyone is trying to use l7filter on a
bridging Ethernet setup. It looks to me like the packets don't get to the
iptables layer so whatever marking I do with l7filter doesn't affect
packets going through the bridge, only packets addressed to the bridge
itself (which I have given an IP so that I can run some other things on
it). Do I need to look into ebtables marking? I don't know if l7filter
works with ebtables anyway. Or am I doing something wrong? The system
I'm working with is running Debian sarge and kernel 2.6.14.4 with the
l7filter patch.
Thanks for any help.
James
More information about the LARTC
mailing list