Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / iptables / 1ffe6a74b366e24f3394603982823ade3ae01d85 / . / extensions / libxt_sctp.man
blob: 9c0bd8c35db3dca6fe7e9b34cf04b6f63cd44e94 [file] [log] [blame]
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]1.TP
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]2[\fB!\fP] \fB\-\-source\-port\fP,\fB\-\-sport\fP \fIport\fP[\fB:\fP\fIport\fP]
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]3.TP
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]4[\fB!\fP] \fB\-\-destination\-port\fP,\fB\-\-dport\fP \fIport\fP[\fB:\fP\fIport\fP]
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]5.TP
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]6[\fB!\fP] \fB\-\-chunk\-types\fP {\fBall\fP|\fBany\fP|\fBonly\fP} \fIchunktype\fP[\fB:\fP\fIflags\fP] [...]
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]7The flag letter in upper case indicates that the flag is to match if set,
8in the lower case indicates to match if unset.
9
Shan Wei4a498502010-06-08 14:16:57 +0200[diff] [blame]10Chunk types: DATA INIT INIT_ACK SACK HEARTBEAT HEARTBEAT_ACK ABORT SHUTDOWN SHUTDOWN_ACK ERROR COOKIE_ECHO COOKIE_ACK ECN_ECNE ECN_CWR SHUTDOWN_COMPLETE ASCONF ASCONF_ACK FORWARD_TSN
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]11
12chunk type available flags
13.br
Shan Weib9f458f2010-06-08 14:15:39 +0200[diff] [blame]14DATA I U B E i u b e
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]15.br
16ABORT T t
17.br
18SHUTDOWN_COMPLETE T t
19
20(lowercase means flag should be "off", uppercase means "on")
21.P
22Examples:
23
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]24iptables \-A INPUT \-p sctp \-\-dport 80 \-j DROP
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]25
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]26iptables \-A INPUT \-p sctp \-\-chunk\-types any DATA,INIT \-j DROP
Jonas Berlinf33c4612005-04-01 06:54:23 +0000[diff] [blame]27
Jan Engelhardtfea74bf2009-01-12 04:53:18 +0100[diff] [blame]28iptables \-A INPUT \-p sctp \-\-chunk\-types any DATA:Be \-j ACCEPT