From 3a02693b57bf968921aa76109712367af17c1a68 Mon Sep 17 00:00:00 2001
From: Harald Welte <laforge@gnumonks.org>
Date: Tue, 22 Nov 2005 22:22:28 +0000
Subject: note that we can only delete chains that are empty

---
 iptables.8.in | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

(limited to 'iptables.8.in')

diff --git a/iptables.8.in b/iptables.8.in
index 0288c173..66800a5a 100644
--- a/iptables.8.in
+++ b/iptables.8.in
@@ -222,9 +222,10 @@ target of that name already.
 .TP
 .BR "-X, --delete-chain " "[\fIchain\fP]"
 Delete the optional user-defined chain specified.  There must be no references
-to the chain.  If there are, you must delete or replace the referring
-rules before the chain can be deleted.  If no argument is given, it
-will attempt to delete every non-builtin chain in the table.
+to the chain.  If there are, you must delete or replace the referring rules
+before the chain can be deleted.  The chain must be empty, i.e. not contain
+any rules.  If no argument is given, it will attempt to delete every
+non-builtin chain in the table.
 .TP
 .BI "-P, --policy " "chain target"
 Set the policy for the chain to the given target.  See the section
-- 
cgit v1.2.3