What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Policy routing. No chain/target/match for ipset

A

avathar

New Around Here
Hello, i encounter a problem with setting up policy routing with iptables. I need to route traffic to some IPs through VPN from all devices in my LAN.

First of all i'm create ipset of this IPs:
Code: 
#!bin/bash
ipset x
ipset create vpnset hash:net

for IP in `cat ipslist_collapsed_prefix`; do
    ipset add vpnset "$IP"
done
Next i'm tryin to MARK all packet from this IPS:
Code: 
admin@RT-AC68U-E330:/# iptables -t mangle -A PREROUTING -m set --match-set vpnset src -j MARK --set-mark 100
And get error:
Code: 
iptables: No chain/target/match by that name.
What I doing wrong?


 
Last edited:
I don't know what your problem is, but the very first line is a) a syntax error, and b) refers to a non-existent shell.

!#bin/bash
 
avathar said:
Hello, i encounter a problem with setting up policy routing with iptables. I need to route traffic to some IPs through VPN from all devices in my LAN.

First of all i'm create ipset of this IPs:
!#bin/bash
ipset x
ipset create vpnset hash:net

for IP in `cat ipslist_collapsed_prefix`; do
ipset add vpnset "$IP"
done​
Next i'm tryin to MARK all packet from this IPS:
admin@RT-AC68U-E330:/# iptables -t mangle -A PREROUTING -m set --match-set vpnset src -j MARK --set-mark 100​
And get error:
iptables: No chain/target/match by that name.

What I doing wrong?


Click to expand...

First of all your shebang is wrong so the script probably doesn't even execute (which would mean the set "vpnset" was never created thus spitting the error when you run the iptables command)

Code: 
#!/bin/sh
ipset x
ipset create vpnset hash:net

for IP in "$(cat ipslist_collapsed_prefix)"; do
    ipset add vpnset "$IP"
done
 
Adamm said:
First of all your shebang is wrong so the script probably doesn't even execute (which would mean the set "vpnset" was never created thus spitting the error when you run the iptables command)

Code: 
#!/bin/sh
ipset x
ipset create vpnset hash:net

for IP in "$(cat ipslist_collapsed_prefix)"; do
    ipset add vpnset "$IP"
done
Click to expand...

it's just typo. ipset created successfully
Code: 
admin@RT-AC68U-E330:/# ipset list | head -9
Name: vpnset
Type: hash:net
Revision: 6
Header: family inet hashsize 8192 maxelem 65536
Size in memory: 103692
References: 0
Number of entries: 24817
Members:
34.203.226.0
 
You must log in or register to reply here.

Similar threads

A
Entware iptables no chain/target/match and tcpdump problems
Replies
3
Views
1K
RMerlin
RMerlin
A
Policy-based port routing to bypass NordVPN client
Replies
10
Views
2K
Don->
D
D
DCSP marking
Replies
19
Views
2K
Coldblackice
Coldblackice
iJorgen
Optimize blocked events from firewall in the system-log
Replies
5
Views
1K
iJorgen
iJorgen
M
x3mRouting Empty ipset with dnsmasq, works fine with ASN Method
Replies
18
Views
2K
Mikii
M
Similar threads
Thread starter Title Forum Replies Date
T [Solved]Configure Policy based routing for transparent proxy Asuswrt-Merlin 6
D Proper VPN Policy Rules Asuswrt-Merlin 2
R AC68U drowed by routing wireguard trafic Asuswrt-Merlin 0
D Adding a Ubiquiti Cloud Gateway Max for routing and DHCP Asuswrt-Merlin 3
SkierInAvon Very Strange WAN Login Entry…WAN Routing 192.168.1.20??? HUH? Asuswrt-Merlin 6
CaptnDanLKW Router to Router Routing help Asuswrt-Merlin 11
Celico Routing only traffic to specific IP through VPN? Asuswrt-Merlin 7
el_pedr0 Please help me diagnose knotty routing problem Asuswrt-Merlin 4
C Routing my VPN Server through VPN Client 1 Having issues with Facetime Asuswrt-Merlin 50
O PI hole + unbound + domain vpn routing Asuswrt-Merlin 10

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 1,110 (members: 10, guests: 1,100)
Back
Top