From 94037a96eba106cafad31ca1b2a9250b1b3eaba5 Mon Sep 17 00:00:00 2001 From: "/C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org" Date: Thu, 28 Jul 2005 15:24:02 +0000 Subject: update manpage to reflect QUEUE / nfnetlink_queue / NFQUEUE changes --- iptables.8.in | 23 ++++++++++++++++++----- 1 file changed, 18 insertions(+), 5 deletions(-) (limited to 'iptables.8.in') diff --git a/iptables.8.in b/iptables.8.in index 0d17bd5..118c50c 100644 --- a/iptables.8.in +++ b/iptables.8.in @@ -71,7 +71,19 @@ means to let the packet through. .I DROP means to drop the packet on the floor. .I QUEUE -means to pass the packet to userspace (if supported by the kernel). +means to pass the packet to userspace. (How the packet can be received +by a userspace process differs by the particular queue handler. 2.4.x +and 2.6.x kernels up to 2.6.13 include the +.B +ip_queue +queue handler. Kernels 2.6.14 and later additionally include the +.B +nfnetlink_queue +queue handler. Packets with a target of QUEUE will be sent to queue number '0' +in this case. Please also see the +.B +NFQUEUE +target as described later in this man page.) .I RETURN means stop traversing this chain and resume at the next rule in the previous (calling) chain. If the end of a built-in chain is reached @@ -440,7 +452,8 @@ There are several other changes in iptables. .BR iptables-restore (8), .BR ip6tables (8), .BR ip6tables-save (8), -.BR ip6tables-restore (8). +.BR ip6tables-restore (8), +.BR libipq (3). .P The packet-filtering-HOWTO details iptables usage for packet filtering, the NAT-HOWTO details NAT, @@ -451,7 +464,7 @@ and the netfilter-hacking-HOWTO details the netfilter internals. See .BR "http://www.netfilter.org/" . .SH AUTHORS -Rusty Russell wrote iptables, in early consultation with Michael +Rusty Russell originally wrote iptables, in early consultation with Michael Neuling. .PP Marc Boucher made Rusty abandon ipnatctl by lobbying for a generic packet @@ -462,12 +475,12 @@ James Morris wrote the TOS target, and tos match. .PP Jozsef Kadlecsik wrote the REJECT target. .PP -Harald Welte wrote the ULOG target, TTL, DSCP, ECN matches and targets. +Harald Welte wrote the ULOG and NFQUEUE target, the new libiptc, as well as the TTL, DSCP, ECN matches and targets. .PP The Netfilter Core Team is: Marc Boucher, Martin Josefsson, Jozsef Kadlecsik, Patrick McHardy, James Morris, Harald Welte and Rusty Russell. .PP -Man page written by Herve Eychenne . +Man page originally written by Herve Eychenne . .\" .. and did I mention that we are incredibly cool people? .\" .. sexy, too .. .\" .. witty, charming, powerful .. -- cgit v1.2.3