I found this is useful for me to match multiple DSCP values in a rule.

For example, if you want to handle traffic with a list of DSCP same way, 
instead of using this:

  -A FORWARD ...condition 1... -m dscp --dscp-class AF11 -j TARGET
  -A FORWARD ...condition 1... -m dscp --dscp-class AF21 -j TARGET
  -A FORWARD ...condition 1... -m dscp --dscp-class AF31 -j TARGET
  -A FORWARD ...condition 2... -m dscp --dscp 10 -j TARGET
  -A FORWARD ...condition 2... -m dscp --dscp 10 -j TARGET

you can use:

  -A FORWARD ... -m dscp --dscp-class AF11,AF21,AF31 -j TARGET

This is mainly convenient if you want to 1-to-1 mapping from your app to 
iptables rule.
Also you don't need to add up packet counts (for example) from multiple 
rules.


Does anyone have an idea whether this will be useful for others and 
worth to push?

Thanks.