summaryrefslogtreecommitdiffstats
path: root/extensions/libxt_sctp.man
diff options
context:
space:
mode:
authorYasuyuki KOZAKAI <yasuyuki@netfilter.org>2007-11-29 04:39:51 +0000
committerYasuyuki KOZAKAI <yasuyuki@netfilter.org>2007-11-29 04:39:51 +0000
commitfe7e95ee772b7e74f5ac8219bf5d3473349a80e5 (patch)
tree01fe2a2f8444e8ad7a3f67f4cb7fb924d3a1548c /extensions/libxt_sctp.man
parenta2c18dd82af45cbd1d7a352d81e1512671701411 (diff)
Move libipt_sctp.man to libxt_sctp.man for ip6tables.8
Diffstat (limited to 'extensions/libxt_sctp.man')
-rw-r--r--extensions/libxt_sctp.man28
1 files changed, 28 insertions, 0 deletions
diff --git a/extensions/libxt_sctp.man b/extensions/libxt_sctp.man
new file mode 100644
index 00000000..97b467da
--- /dev/null
+++ b/extensions/libxt_sctp.man
@@ -0,0 +1,28 @@
+.TP
+\fB--source-port\fR,\fB--sport \fR[\fB!\fR] \fIport\fR[\fB:\fIport\fR]
+.TP
+\fB--destination-port\fR,\fB--dport \fR[\fB!\fR] \fIport\fR[\fB:\fIport\fR]
+.TP
+\fB--chunk-types\fR [\fB!\fR] \fBall\fR|\fBany\fR|\fBonly \fIchunktype\fR[\fB:\fIflags\fR] [...]
+The flag letter in upper case indicates that the flag is to match if set,
+in the lower case indicates to match if unset.
+
+Chunk types: DATA INIT INIT_ACK SACK HEARTBEAT HEARTBEAT_ACK ABORT SHUTDOWN SHUTDOWN_ACK ERROR COOKIE_ECHO COOKIE_ACK ECN_ECNE ECN_CWR SHUTDOWN_COMPLETE ASCONF ASCONF_ACK
+
+chunk type available flags
+.br
+DATA U B E u b e
+.br
+ABORT T t
+.br
+SHUTDOWN_COMPLETE T t
+
+(lowercase means flag should be "off", uppercase means "on")
+.P
+Examples:
+
+iptables -A INPUT -p sctp --dport 80 -j DROP
+
+iptables -A INPUT -p sctp --chunk-types any DATA,INIT -j DROP
+
+iptables -A INPUT -p sctp --chunk-types any DATA:Be -j ACCEPT