From: Faiyaz Ahmed <faiyaza@cs.princeton.edu>
Date: Fri, 25 Jul 2008 16:23:39 +0000 (+0000)
Subject: copy xid is our addition not supported by iptables-restore.  This is required for... 
X-Git-Tag: nodeconfig-4.2-11~7
X-Git-Url: http://git.onelab.eu/?p=nodeconfig.git;a=commitdiff_plain;h=f46e9ad11ae76f94da38092f52910f16e6188533

copy xid is our addition not supported by iptables-restore.  This is required for marking 0x0.
---

diff --git a/PlanetLabConf/iptables-Internet2 b/PlanetLabConf/iptables-Internet2
index 7594543..cabcf8d 100644
--- a/PlanetLabConf/iptables-Internet2
+++ b/PlanetLabConf/iptables-Internet2
@@ -30,8 +30,8 @@ COMMIT
 :FORWARD ACCEPT [0:0]
 :OUTPUT ACCEPT [0:0]
 :POSTROUTING ACCEPT [0:0]
--A INPUT -i ! lo -j MARK 0x0
--A POSTROUTING -j MARK 0x0
+-A INPUT -i ! lo -j MARK --copy-xid 0x0
+-A POSTROUTING -j MARK --copy-xid 0x0
 -A POSTROUTING -j CLASSIFY --set-class 0001:1000
 -A POSTROUTING -m set --set Internet2 dst -j CLASSIFY --set-class 0001:2000
 COMMIT