diff options
author | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org> | 2007-02-24 15:11:33 +0000 |
---|---|---|
committer | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org> | 2007-02-24 15:11:33 +0000 |
commit | 1905e3521e8401ad2ef912263265596d43e06a3c (patch) | |
tree | 206f258318c77aefd215255edfc680f39311dc6d /extensions/libipt_SAME.man | |
parent | 6ef120e980e3e44bab704a01414a2ebec1c4c481 (diff) |
iptables: add random option to SNAT (Eric Leblond)
Diffstat (limited to 'extensions/libipt_SAME.man')
-rw-r--r-- | extensions/libipt_SAME.man | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/extensions/libipt_SAME.man b/extensions/libipt_SAME.man index 817c200..4e88d48 100644 --- a/extensions/libipt_SAME.man +++ b/extensions/libipt_SAME.man @@ -9,3 +9,7 @@ multiple ranges. .B "--nodst" Don't use the destination-ip in the calculations when selecting the new source-ip +.TP +.B "--random" +Port mapping will be forcely randomized to avoid attacks based on +port prediction (kernel >= 2.6.21). |