the problem is solved, but i don't understand why. the reason for the weird pings from 192.168.31.2 to 192.168.14.1, which resulted in: echo request: 192.168.31.2 -> 192.168.14.1 echo reply: 192.168.14.1 -> 192.168.14.1 but which weren't a problem the other way: echo request: 192.168.14.1 -> 192.168.31.2 echo reply: 192.168.31.2 -> 192.168.14.1 are the following netfilter/iptables mangle rules: iptables -t mangle -N mark-embryo iptables -t mangle -A mark-embryo -j MARK --set-mark 192168141 iptables -t mangle -A INPUT -j mark-embryo which i use for QoS to mark all packets entering the router with the decimal mark 192168141. this caused the echo replies to be rewritten/affected somehow, which is something that i can't explain, and which definitely looks like a bug to me. the MARK netfilter target doesn't (shouldn't) have any effect on the actual IP information!!! any thoughts? -- martin; (greetings from the heart of the sun.) \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck this site has moved. we'd tell you where, but then we'd have to delete you.
Attachment:
pgpci4PeX_fLV.pgp
Description: PGP signature