Hi, How should I understand --tcp-flags option? 1) There's two parameters, why need two of them? e.g I might just need to match a packet with SYN and RST bit set, why do I need to place it for twice (--tcp-flags SYN RST, SYN RST 2) What does this mean? I don't really get what "mask" and "comp" do here --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN Thanks! -- Best Regards, Aaron Lewis - PGP: 0xDFE6C29E ( http://keyserver.veridis.com ) Finger Print: 9482 448F C7C3 896C 1DFE 7DD3 2492 A7D0 DFE6 C29E -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
