> On my Debian squeeze box, I see: > > root@gateway:~# cat /proc/net/arp_tables_matches > time > connlimit > realm > pkttype > physdev > mac > connmark > helper > limit > statistic > mark > comment > owner > conntrack > conntrack > root@gateway:~# > > And almost none of those are mentioned in 'man arptables' > In addition to the above, I also have:
CHECKSUM CT NFQUEUE SECMARK NFLOG CONNSECMARK CLASSIFY AUDIT CONNMARK MARK ERROR A simple "find" to look for "libarpt_*.so" does not return anything at all (I looked in /lib64 as well as /usr/lib64), which tells me all I need to know whether any of the above targets are "available" to arptables. I am, frankly, amazed I didn't run across this before, but I guess I didn't need to use any of those targets when crafting my arptables-restore statements. ------------------------------------------------------------------------------ Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnmore_122712 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
