iptables: add manual page section for AUDIT target

Signed-off-by: Thomas Graf <tgraf@redhat.com> Signed-off-by: Patrick McHardy <kaber@trash.net>
author: Thomas Graf <tgraf@redhat.com> 2011-03-16 16:30:09 +0100
committer: Patrick McHardy <kaber@trash.net> 2011-03-16 16:30:09 +0100
commit: c7948744bf591e0c46b6d19ccfa408cc59e11ef1 (patch)
tree: 5294fa1578c1c865a123a9251169ebc72ab4807f /extensions
parent: d59b9db031abee37a9aa9776662dd15370faabf4 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/extensions/libxt_AUDIT.man b/extensions/libxt_AUDIT.man
new file mode 100644
index 00000000..cd796967
--- /dev/null
+++ b/extensions/libxt_AUDIT.man
@@ -0,0 +1,14 @@
+This target allows to create audit records for packets hitting the target.
+It can be used to record accepted, dropped, and rejected packets. See
+auditd(8) for additional details.
+.TP
+\fB\-\-type\fP {\fBaccept\fP|\fBdrop\fP|\fBreject\fP}
+Set type of audit record.
+.PP
+Example:
+.IP
+iptables \-N AUDIT_DROP
+.IP
+iptables \-A AUDIT_DROP \-j AUDIT \-\-type drop
+.IP
+iptables \-A AUDIT_DROP \-j DROP
author	Thomas Graf <tgraf@redhat.com>	2011-03-16 16:30:09 +0100
committer	Patrick McHardy <kaber@trash.net>	2011-03-16 16:30:09 +0100
commit	c7948744bf591e0c46b6d19ccfa408cc59e11ef1 (patch)
tree	5294fa1578c1c865a123a9251169ebc72ab4807f /extensions
parent	d59b9db031abee37a9aa9776662dd15370faabf4 (diff)