"not from all" in ip rules
by MQMan from LinuxQuestions.org on (#5258Z)
Just trying to educate myself a little.
After starting a wireguard server, my ip rules look like this:
Code:0: from all lookup local
32764: from all lookup main suppress_prefixlength 0
32765: not from all fwmark 0xca6c lookup 51820
32766: from all lookup main
32767: from all lookup defaultOK, I (think I) understand that the "from all" means all packets regardless of source address/interface will be routed through the rule.
But what is "not from all", as that seems contradictory to me.
Cheers.
After starting a wireguard server, my ip rules look like this:
Code:0: from all lookup local
32764: from all lookup main suppress_prefixlength 0
32765: not from all fwmark 0xca6c lookup 51820
32766: from all lookup main
32767: from all lookup defaultOK, I (think I) understand that the "from all" means all packets regardless of source address/interface will be routed through the rule.
But what is "not from all", as that seems contradictory to me.
Cheers.