From 3188a949017fb82305f1c1606e14430c056e9226 Mon Sep 17 00:00:00 2001 From: teastep Date: Mon, 6 Oct 2008 14:51:25 +0000 Subject: [PATCH] Add CONNBYTES to shorewall-tcrules(5) git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@8751 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- manpages/shorewall-tcrules.xml | 50 +++++++++++++++++++++++++++++++++- 1 file changed, 49 insertions(+), 1 deletion(-) diff --git a/manpages/shorewall-tcrules.xml b/manpages/shorewall-tcrules.xml index b4bea5c2e..b572fddbc 100644 --- a/manpages/shorewall-tcrules.xml +++ b/manpages/shorewall-tcrules.xml @@ -1,4 +1,6 @@ + shorewall-tcrules @@ -498,6 +500,52 @@ + + CONNBYTES - + [!]min:[max[:{O|R|B}[:{B|P|A}]]] + + + Connection Bytes; defines a byte or packet range that the + connection must fall within in order for the rule to match. + + A packet matches if the the packet/byte count is within the + range defined by min and + max (unless ! is given in which case, a packet + matches if the packet/byte count is not within the range). + min is an integer which defines the beginning + of the byte/packet range. max is an integer + which defines the end of the byte/packet range; if omitted, only the + beginning of the range is checked. The first letter gives the + direction which the range refers to:
+ O - The original + direction of the connection. + + R - The opposite + direction from the original connection. + + B - The total of both + directions. +
+ + If omitted, B is assumed. + + + The second letter determines what the range refers + to.
+ B - Bytes + + P - Packets + + A - Average packet + size. +
+ + + HELPER - "helper" @@ -576,4 +624,4 @@ shorewall-tcclasses(5), shorewall-tcdevices(5), shorewall-tos(5), shorewall-tunnels(5), shorewall-zones(5) - \ No newline at end of file +