Re: [PATCHv7 iptables] Interface group match

[PATCHv7 0/5 + 3] Interface group patches · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 1/5] Remove unnecessary locks from rtnetlink (in do_setlink) · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 2/5] rtnetlink: send a single notification on device state changes · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 3/5] Interface group: core (netlink) part · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 4/5] Ifgroup read/write support in sysfs · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 5/5] Netfilter Interface group match · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 iptables] Interface group match · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 iproute2 1/2] Added IFLA_NET_NS_PID as in kernel v2.6.24-rc1 · Laszlo Attila Toth <hidden> · 2007-11-29
[PATCHv7 iproute2 2/2] Interface group as new ip link option · Laszlo Attila Toth <hidden> · 2007-11-29
Re: [PATCHv7 iproute2 2/2] Interface group as new ip link option · Jarek Poplawski <hidden> · 2007-12-01
Re: [PATCHv7 iptables] Interface group match · Jarek Poplawski <hidden> · 2007-12-01
Re: [PATCHv7 iptables] Interface group match · Jarek Poplawski <hidden> · 2007-12-01
Re: [PATCHv7 2/5] rtnetlink: send a single notification on device state changes · Jarek Poplawski <hidden> · 2007-11-30
Re: [PATCHv7 2/5] rtnetlink: send a single notification on device state changes · Laszlo Attila Toth <hidden> · 2007-12-03
Re: [PATCHv7 2/5] rtnetlink: send a single notification on device state changes · Jarek Poplawski <hidden> · 2007-12-03
Re: [PATCHv7 1/5] Remove unnecessary locks from rtnetlink (in do_setlink) · Jarek Poplawski <hidden> · 2007-11-30
Re: [PATCHv7 1/5] Remove unnecessary locks from rtnetlink (in do_setlink) · Laszlo Attila Toth <hidden> · 2007-12-03
[PATCHv7 1/5][RESEND] Remove unnecessary locks from rtnetlink · Laszlo Attila Toth <hidden> · 2007-12-18
[PATCHv7 2/5][RESEND] rtnetlink: send a single notification on device state changes · Laszlo Attila Toth <hidden> · 2007-12-18
[PATCHv7 iproute2 2/2][RESEND] Interface group as new ip link option · Laszlo Attila Toth <hidden> · 2007-12-18
Re: [PATCHv7 0/5 + 3] Interface group patches · Patrick McHardy <hidden> · 2007-11-29
Re: [PATCHv7 0/5 + 3] Interface group patches · Laszlo Attila Toth <hidden> · 2007-11-29

From: Jarek Poplawski <hidden>
Date: 2007-12-01 21:17:35

Laszlo Attila Toth wrote, On 11/29/2007 05:11 PM:
...

quoted hunk ↗ jump to hunk

Index: extensions/libxt_ifgroup.man
===================================================================

--- extensions/libxt_ifgroup.man	(revision 0)
+++ extensions/libxt_ifgroup.man	(revision 0)

@@ -0,0 +1,36 @@
+Maches packets on an interface if it is in the same interface group


  +Matches packets on an interface if it is in the same interface group

+as specified by the
+.B "--ifgroup-in"
+or
+.B "--ifgroup-in"


  +.B "--ifgroup-out"

+parameter. If a mask is also specified, the masked value of
+the inteface's group must be equal to the given value of the


  +the interface's group must be equal to the given value of the

+.B "--ifgroup-in"
+or
+.B "--ifgroup-out"
+parameter to match. This match is available in all tables.
+.TP
+.BR "[!] --ifgroup-in \fIgroup[/mask]\fR"
+This specifies the interface group of input interface and the optional mask.
+Valid only in the in the


  +Valid only in the

+.B PREROUTING
+and
+.B INPUT
+and
+.B FORWARD
+chains, and user-defined chains which are only called from those
+chains. 
+.TP
+.BR "[!] --ifgroup-out \fIgroup[/mask]\fR"
+This specifies the interface group of out interface and the optional mask.


  +This specifies the interface group of output interface and the optional mask.

+Valid only in the in the
+.B FORWARD
+and
+.B OUTPUT
+and
+.B POSTROUTING
+chains, and user-defined chains which are only called from those
+chains. 
+.RS
+.PP
+

Regards,
Jarek P.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help