I've been successfully using IP_NF_MATCH_TIME via patch-o-matic for quite a while, up through iptables 1.3.8. With iptables 1.4.0 and kernel 2.6.24, I saw that IP_NF_MATCH_TIME had been replaced by NETFILTER_XT_MATCH_TIME native in the kernel, so I switched to that. Unfortunately, XT_MATCH_TIME seems never to match, with the effect that all of my traffic is blocked. Is this a known bug? Anyone else encountered it? I can't find a mention of it on the list. Thanks, Andrew. - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
