path: root/doc
diff options
authorPablo Neira Ayuso <>2012-03-05 23:13:12 +0100
committerPablo Neira Ayuso <>2012-03-05 23:14:32 +0100
commit1de3034f8c4f597cbe4be35b2f84e2848e46e64e (patch)
tree517278c56035fa41de7fe74ae505e6218372d066 /doc
parentbb2534c7aaf0bdb6521371b8a31af6333d3a6a2d (diff)
doc: fix example on how to filter events via iptables CT target
You have to use this: iptables -I PREROUTING -t raw -j CT --ctevents assured,destroy instead of: iptables -I PREROUTING -t raw -j CT --ctevents assured Otherwise, conntrackd cache gets full since no destroy events are delivered. Reported-by: Kerin Millar <> Signed-off-by: Pablo Neira Ayuso <>
Diffstat (limited to 'doc')
1 files changed, 3 insertions, 2 deletions
diff --git a/doc/manual/conntrack-tools.tmpl b/doc/manual/conntrack-tools.tmpl
index 4936a76..dbf836d 100644
--- a/doc/manual/conntrack-tools.tmpl
+++ b/doc/manual/conntrack-tools.tmpl
@@ -641,10 +641,11 @@ Sync {
<para>The following example shows how to only generate the
- <emphasis>assured</emphasis> event:</para>
+ <emphasis>assured</emphasis> and <emphasis>destroy</emphasis>
+ events:</para>
- # iptables -I PREROUTING -t raw -j CT --ctevents assured
+ # iptables -I PREROUTING -t raw -j CT --ctevents assured,destroy
<note><title>Assured flows</title>