You are not logged in.
- Topics: Active | Unanswered
#1 2015-01-22 03:31:47
- enihcam
- Member
- From: Internet
- Registered: 2009-12-20
- Posts: 220
[SOLVED] ipset and "-m set ! --match-set" question
I have one ipset named S and I wish all non-S connections to be marked.
can I use the following commands?
/usr/bin/iptables -t mangle -N FWMARK
/usr/bin/iptables -t mangle -A FWMARK -m set ! --match-set S dst -j MARK --set-mark 0xffffThanks.
update:
it works.
Last edited by enihcam (2015-01-22 23:37:57)
Offline
#2 2015-01-22 05:13:02
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,231
- Website
Re: [SOLVED] ipset and "-m set ! --match-set" question
Have you tried it?
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline
#3 2015-01-22 16:45:28
- enihcam
- Member
- From: Internet
- Registered: 2009-12-20
- Posts: 220
Re: [SOLVED] ipset and "-m set ! --match-set" question
fukawi2 wrote:
Have you tried it?
There are multiple blocking issues on my router, and they also block the test of this. so that's why I'm looking for hints from the forum, with the simplified question.
Offline