TCPMSS is not restricted to mangle table
Philip Craig
philipc at snapgear.com
Mon Dec 5 02:33:03 CET 2005
On 12/05/2005 10:27 AM, Patrick McHardy wrote:
> I just noticed the TCPMSS target is not restricted to the
> mangle table. Any opinions about whether we should change
> this, perhaps with a warning period?
The historical reason for this is that originally the mangle table
only had PREROUTING and OUTPUT hooks, and so you couldn't clamp
forwarded packets in the mangle table (since it needs the outgoing
interface).
The majority of existing scripts and documentation still reference
the filter table. So changing this will affect most of its users.
So I think update the official documentation for consistency, but
leave the code how it is.
More information about the netfilter-devel
mailing list