* length module documentation mismatch
@ 2015-06-04 14:56 causeless
0 siblings, 0 replies; only message in thread
From: causeless @ 2015-06-04 14:56 UTC (permalink / raw)
To: netfilter
In iptables-extension man page, it says length module matches the payload of L3.
but xt_length.c matches the total length of IPv4/v6 packet.
https://github.com/torvalds/linux/blob/4f671fe2f9523a1ea206f63fe60a7c7b3a56d5c7/net/netfilter/xt_length.c#L27
> u_int16_t pktlen = ntohs(ip_hdr(skb)->tot_len);
http://git.netfilter.org/iptables/tree/extensions/libxt_length.man
> This module matches the length of the layer-3 payload (e.g. layer-4 packet)
should have been, perhaps,
> This module matches the length of the layer-3 packet (e.g. layer-2 payload)
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2015-06-04 14:56 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-06-04 14:56 length module documentation mismatch causeless
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).