diff options
Diffstat (limited to 'extensions/libip6t_owner.man')
-rw-r--r-- | extensions/libip6t_owner.man | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/extensions/libip6t_owner.man b/extensions/libip6t_owner.man new file mode 100644 index 00000000..8a31ca40 --- /dev/null +++ b/extensions/libip6t_owner.man @@ -0,0 +1,21 @@ +This module attempts to match various characteristics of the packet +creator, for locally-generated packets. It is only valid in the +.B OUTPUT +chain, and even this some packets (such as ICMP ping responses) may +have no owner, and hence never match. This is regarded as experimental. +.TP +.BI "--uid-owner " "userid" +Matches if the packet was created by a process with the given +effective user id. +.TP +.BI "--gid-owner " "groupid" +Matches if the packet was created by a process with the given +effective group id. +.TP +.BI "--pid-owner " "processid" +Matches if the packet was created by a process with the given +process id. +.TP +.BI "--sid-owner " "sessionid" +Matches if the packet was created by a process in the given session +group. |