File: libxt_connbytes.txlate

package info (click to toggle)
iptables 1.8.13-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 6,684 kB
  • sloc: ansic: 53,529; sh: 8,343; xml: 772; python: 755; makefile: 271
file content (14 lines) | stat: -rw-r--r-- 842 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
 
iptables-translate -A OUTPUT -m connbytes --connbytes 200 --connbytes-dir original --connbytes-mode packets
nft 'add rule ip filter OUTPUT ct original packets ge 200 counter'

iptables-translate -A OUTPUT -m connbytes ! --connbytes 200 --connbytes-dir reply --connbytes-mode packets
nft 'add rule ip filter OUTPUT ct reply packets lt 200 counter'

iptables-translate -A OUTPUT -m connbytes --connbytes 200:600 --connbytes-dir both --connbytes-mode bytes
nft 'add rule ip filter OUTPUT ct bytes 200-600 counter'

iptables-translate -A OUTPUT -m connbytes ! --connbytes 200:600 --connbytes-dir both --connbytes-mode bytes
nft 'add rule ip filter OUTPUT ct bytes != 200-600 counter'

iptables-translate -A OUTPUT -m connbytes --connbytes 200:200 --connbytes-dir both --connbytes-mode avgpkt
nft 'add rule ip filter OUTPUT ct avgpkt 200 counter'