Merge branch 'master' into iptables-next

author: Patrick McHardy <kaber@trash.net> 2010-07-15 18:15:03 +0200
committer: Patrick McHardy <kaber@trash.net> 2010-07-15 18:15:03 +0200
commit: b14f160c11196aeb99000611207bd353c7ae2cb9 (patch)
tree: 250e1e5386a24e41f2d1cf83089876549c9135d2 /extensions/libxt_SET.man
parent: 0bcda81f5f6d121084131fb944e2940f614cc98c (diff)
parent: b4fa7222923bc10476b8753f358e871f461eb2db (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/extensions/libxt_SET.man b/extensions/libxt_SET.man
new file mode 100644
index 00000000..ea80c2a1
--- /dev/null
+++ b/extensions/libxt_SET.man
@@ -0,0 +1,18 @@
+This modules adds and/or deletes entries from IP sets which can be defined 
+by ipset(8).
+.TP
+\fB\-\-add\-set\fP \fIsetname\fP \fIflag\fP[\fB,\fP\fIflag\fP...]
+add the address(es)/port(s) of the packet to the sets
+.TP
+\fB\-\-del\-set\fP \fIsetname\fP \fIflag\fP[\fB,\fP\fIflag\fP...]
+delete the address(es)/port(s) of the packet from the sets
+.IP
+where flags are
+.BR "src"
+and/or
+.BR "dst"
+specifications and there can be no more than six of them.
+.PP
+Use of -j SET requires that ipset kernel support is provided. As standard
+kernels do not ship this currently, the ipset or Xtables-addons package needs
+to be installed.
author	Patrick McHardy <kaber@trash.net>	2010-07-15 18:15:03 +0200
committer	Patrick McHardy <kaber@trash.net>	2010-07-15 18:15:03 +0200
commit	b14f160c11196aeb99000611207bd353c7ae2cb9 (patch)
tree	250e1e5386a24e41f2d1cf83089876549c9135d2 /extensions/libxt_SET.man
parent	0bcda81f5f6d121084131fb944e2940f614cc98c (diff)
parent	b4fa7222923bc10476b8753f358e871f461eb2db (diff)