summaryrefslogtreecommitdiffstats
path: root/extensions/libxt_SET.man
diff options
context:
space:
mode:
Diffstat (limited to 'extensions/libxt_SET.man')
-rw-r--r--extensions/libxt_SET.man18
1 files changed, 18 insertions, 0 deletions
diff --git a/extensions/libxt_SET.man b/extensions/libxt_SET.man
new file mode 100644
index 00000000..ea80c2a1
--- /dev/null
+++ b/extensions/libxt_SET.man
@@ -0,0 +1,18 @@
+This modules adds and/or deletes entries from IP sets which can be defined
+by ipset(8).
+.TP
+\fB\-\-add\-set\fP \fIsetname\fP \fIflag\fP[\fB,\fP\fIflag\fP...]
+add the address(es)/port(s) of the packet to the sets
+.TP
+\fB\-\-del\-set\fP \fIsetname\fP \fIflag\fP[\fB,\fP\fIflag\fP...]
+delete the address(es)/port(s) of the packet from the sets
+.IP
+where flags are
+.BR "src"
+and/or
+.BR "dst"
+specifications and there can be no more than six of them.
+.PP
+Use of -j SET requires that ipset kernel support is provided. As standard
+kernels do not ship this currently, the ipset or Xtables-addons package needs
+to be installed.