Why in section "Mangle" when creating a rule forbidden select several "Connection Mark"?
For this reason you need to create more than one rule.
question on "Firewall -> Mangle"
Почему нельзя в разделе "Mangle" при создании правила выбрать несколько "Connection Mark"?
По этой причине требуется создавать более одного правила.
Code: Select all
add name=VideoPlayBack regexp="^.*(get|GET).+(videoplayback).*\$"
add action=add-dst-to-address-list address-list=VideoPlayBack address-list-timeout=1d chain=forward disabled=no dst-address-list=!VideoPlayBack dst-port=80 layer7-protocol=VideoPlayBack out-interface="PPTP 1" protocol=tcp
add action=mark-connection chain=forward comment="Mark connection tcp - VideoPlayBack" connection-mark=no-mark disabled=no dst-address-list=VideoPlayBack new-connection-mark="connection - VideoPlayBack" out-interface="PPTP 1" passthrough=yes protocol=tcp
add action=mark-connection chain=forward comment="Mark connection tcp - VideoPlayBack" connection-mark="connection - HTTP(S)" disabled=no dst-address-list=VideoPlayBack new-connection-mark="connection - VideoPlayBack" out-interface="PPTP 1" passthrough=yes protocol=tcp
add action=mark-connection chain=forward comment="Mark connection tcp - HTTP(S)" connection-mark=no-mark disabled=no dst-port=80,443 new-connection-mark="connection - HTTP(S)" out-interface="PPTP 1" passthrough=yes protocol=tcp
add action=mark-packet chain=forward comment="Mark packet tcp in - HTTP(S)" connection-mark="connection - HTTP(S)" disabled=no in-interface="PPTP 1" new-packet-mark="Priority-2-In-http(s)" packet-mark=no-mark passthrough=no
add action=mark-packet chain=forward comment="Mark packet tcp out - HTTP(S)" connection-mark="connection - HTTP(S)" disabled=no new-packet-mark="Priority-2-Out-http(s)" out-interface="PPTP 1" packet-mark=no-mark passthrough=no