Hi, this is the latest version of the new socket match option, '--transparent': if this option is used, only sockets with enabled transparent socket option are matched. As I wrote earlier, the original, default behaviour of the match is unwanted, because not only a transparent socket, but also any socket can be matched, such as a simple SSH or web server's. The kernel part is on the top net-next-2.6. The match info is type contains the revision of the socket match, struct xt_socket_match_info1 which was missing from the previous patches. Regards, Attila -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
