diff options
author | Phil Sutter <phil@nwl.cc> | 2022-10-12 15:00:09 +0200 |
---|---|---|
committer | Phil Sutter <phil@nwl.cc> | 2022-10-26 20:11:03 +0200 |
commit | 1b7c6ffd808b05f362445f3a0a6dde5d7c217caf (patch) | |
tree | 2e4c7aca4922b7597a3acbd847c1d6b752dacce3 /extensions/libxt_NFQUEUE.t | |
parent | 610ed9c8c733e3b40787e975cdcb957981b4a6c5 (diff) |
extensions: NFQUEUE: Document queue-balance limitation
The range is not communicated as "min and max queue number", but "first
queue number and count" instead. With 16bits for each value, it is not
possible to balance between all 65536 possible queues. Although probably
never used in practice, point this detail out in man page and make the
parser complain instead of the cryptic "xt_NFQUEUE: number of total
queues is 0" emitted by the kernel module.
Signed-off-by: Phil Sutter <phil@nwl.cc>
Diffstat (limited to 'extensions/libxt_NFQUEUE.t')
-rw-r--r-- | extensions/libxt_NFQUEUE.t | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/extensions/libxt_NFQUEUE.t b/extensions/libxt_NFQUEUE.t index b51b19fd..5a2df6e7 100644 --- a/extensions/libxt_NFQUEUE.t +++ b/extensions/libxt_NFQUEUE.t @@ -4,9 +4,8 @@ -j NFQUEUE --queue-num 65535;=;OK -j NFQUEUE --queue-num 65536;;FAIL -j NFQUEUE --queue-num -1;;FAIL -# it says "NFQUEUE: number of total queues is 0", overflow in NFQUEUE_parse_v1? -# ERROR: cannot load: iptables -A INPUT -j NFQUEUE --queue-balance 0:65535 -# -j NFQUEUE --queue-balance 0:65535;=;OK +-j NFQUEUE --queue-balance 0:65534;=;OK +-j NFQUEUE --queue-balance 0:65535;;FAIL -j NFQUEUE --queue-balance 0:65536;;FAIL -j NFQUEUE --queue-balance -1:65535;;FAIL -j NFQUEUE --queue-num 10 --queue-bypass;=;OK |