Iptables / What is the difference between connmark and mark?
9,547
MARK associates "marks" with packets. CONNMARK associates "marks" with connections. The second one is useful because you can mark all the packets of a connection or related to a connection with the same mark (for example, FTP). Another usefull use of CONNMARK is that you can mark packets using the criteria that only matches with the first packet.
Related videos on Youtube
![IPTABLES [PART-1] : "UNDERSTANDING THE CONCEPT"](https://i.ytimg.com/vi/vbhr4csDeI4/hq720.jpg?sqp=-oaymwEcCNAFEJQDSFXyq4qpAw4IARUAAIhCGAFwAcABBg==&rs=AOn4CLBovKYd5heeT0eQFP4enqBJ_GCa1Q)
07 : 53
IPTABLES [PART-1] : "UNDERSTANDING THE CONCEPT"
31 : 02
iptables Complete Guide | HackerSploit Linux Security
02 : 59
Unix & Linux: How to add marks together in iptables (targets MARK and CONNMARK)?
01 : 12
DevOps & SysAdmins: Iptables / What is the difference between connmark and mark?
01 : 42
DevOps & SysAdmins: mark match and connmark match in single iptable rule
Author by
ibrahim
Updated on September 18, 2022Comments
-
ibrahim over 1 year
While adding iptables rules, I couldn't understand what is the difference between connmark and mark? If anyone explains it with detailed explanations, I will be appreciated.