Fix --tmark option

Even when --tmark was used, the iptables code always used '1' for the mark. This patch corrects the problem. Previously, it wasn't clear if the tmark should be supplied in hexadecimal or as an integer. This makes it use hexadecimal, checks that the input is hexadecimal, and updates the associated documentation. This patch also makes --ttl information get passed to the firewall in a way that matches how other information gets passed. The ttl and tmark information are passed next to each other in many places and this patch also makes the order consistent.
author: Scott Kuhl <kuhl@mtu.edu> 2021-05-27 16:21:42 -0400
committer: Scott Kuhl <kuhl@mtu.edu> 2021-05-27 21:48:43 -0400
commit: a7df12cd68334ca5e5b89adf7fba2e2f3ca9f382 (patch)
tree: a0544462e275920bcbd85997d020b9c4bdbb2b59 /sshuttle/methods/ipfw.py
parent: bc54ffe398db54379f74ec0262f077e59ddde802 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/sshuttle/methods/ipfw.py b/sshuttle/methods/ipfw.py
index f93bdf4..bda8968 100644
--- a/sshuttle/methods/ipfw.py
+++ b/sshuttle/methods/ipfw.py
@@ -189,7 +189,7 @@ class Method(BaseMethod):
         #     udp_listener.v6.setsockopt(SOL_IPV6, IPV6_RECVDSTADDR, 1)
 
     def setup_firewall(self, port, dnsport, nslist, family, subnets, udp,
-                       user, ttl):
+                       user, ttl, tmark):
         # IPv6 not supported
         if family not in [socket.AF_INET]:
             raise Exception(
author	Scott Kuhl <kuhl@mtu.edu>	2021-05-27 16:21:42 -0400
committer	Scott Kuhl <kuhl@mtu.edu>	2021-05-27 21:48:43 -0400
commit	a7df12cd68334ca5e5b89adf7fba2e2f3ca9f382 (patch)
tree	a0544462e275920bcbd85997d020b9c4bdbb2b59 /sshuttle/methods/ipfw.py
parent	bc54ffe398db54379f74ec0262f077e59ddde802 (diff)