On Sat, Aug 08, 2015 at 09:45:04PM +0200, Daniel Borkmann wrote:
[...]
> diff --git a/extensions/libxt_CT.c b/extensions/libxt_CT.c
> index 6b28fe1..86b1221 100644
> --- a/extensions/libxt_CT.c
> +++ b/extensions/libxt_CT.c
> @@ -16,7 +16,8 @@ static void ct_help(void)
> " --helper name Use conntrack helper 'name' for connection\n"
> " --ctevents event[,event...] Generate specified conntrack events for connection\n"
> " --expevents event[,event...] Generate specified expectation events for connection\n"
> -" --zone ID Assign/Lookup connection in zone ID\n"
> +" --zone {ID|mark} Assign/Lookup connection in zone ID/packet nfmark\n"
> +" --zone-dir {ORIGINAL|REPLY} Only apply zone in a particular direction\n"
I suggest you add these options:
--zone-orig ...
--zone-reply ...
--zone ...
so they match to what we have in the ctnetlink interface. Thanks!
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
