Name
|
Netfilter repository
|
Netfilter status (28 December 2005)
|
Remarks
|
| HOPLIMIT |
Base |
Works for me |
Since 1.4.11, don't apply the pom ipv6 part (ipv6 not supported) |
| IPV4OPTSSTRIP |
Base |
Works for me |
|
| NETLINK |
Base |
Working, will not go into main kernel |
|
| NETMAP |
Base |
Submitted (2.6) |
|
| REJECT |
Base |
In Development (IP v6 only) |
Since 1.4.11, don't apply the pom ipv6 part (ipv6 not supported) |
| SAME |
Submitted (v2.6) |
Works (submitted) |
|
| TARPIT |
Extra |
Works for me |
can't be used with conntrack |
| TTL |
Base |
Stable, needs new checksum handling |
updated in1.4.11 |
| connlimit |
Base |
Works for me |
updated in1.4.11 |
| cuseeme-nat |
Extra |
Works for me - has alignment issues on RISC!!! |
|
| dstlimit |
Obsolete |
Deprecated by hashlimit |
|
| fuzzy |
Base |
Under development, but works. |
updated in1.4.11 |
| h323-conntrack-nat |
Extra |
Alpha |
|
| iprange |
Base |
Works |
|
| ipv4options |
Base |
experimental |
updated in1.4.11 |
| mms-conntrack-nat |
Extra |
Works for me |
|
| mport |
Obsolete |
Deprecated by 'multiport' version1 in 2.6.11-rcX |
|
| nf-log |
Submitted (v2.6) |
Working, included in 2.6 mainline |
|
| nth |
Base |
Works |
updated in1.4.11 |
| osf |
Base |
|
need to load data to make OS fingerprinting work |
| pool |
Obsolete |
Deprecated by new ``set match |
|
| pptp-conntrack-nat |
Extra |
Testing, especially the 2.6.x port |
updated in1.4.11 |
| psd |
Base |
Stable for 2.4.x |
|
| quake3-conntrack-nat |
Extra |
Works for me |
|
| quota |
Base |
Works for me |
updated in1.4.11 |
| random |
Base |
Works |
|
| raw |
Submitted (v2.6) |
Testing |
updated in1.4.8 |
| realm |
Submitted (v2.6) |
Part of mainline 2.6.x kernel |
|
| rtsp-conntrack |
Extra |
Beta - needs some testing and porting to 2.6.x |
|
| set |
Base |
need ipset userspace |
need userspace binary |
| string |
Extra |
Working, not with kernel 2.4.9 |
|
| time |
Base |
Works within it's limitations |
updated in1.4.11 |
| u32 |
Base |
Tested locally, seems to work. |
|
