diff options
Diffstat (limited to 'extensions/libxt_NFQUEUE.man')
| -rw-r--r-- | extensions/libxt_NFQUEUE.man | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/extensions/libxt_NFQUEUE.man b/extensions/libxt_NFQUEUE.man index 910e3863..7a991291 100644 --- a/extensions/libxt_NFQUEUE.man +++ b/extensions/libxt_NFQUEUE.man @@ -21,5 +21,12 @@ Packets belonging to the same connection are put into the same nfqueue. .TP \fB\-\-queue\-bypass\fP By default, if no userspace program is listening on an NFQUEUE, then all packets that are to be queued -are dropped. When this option is used, the NFQUEUE rule is silently bypassed instead. The packet -will move on to the next rule. +are dropped. When this option is used, the NFQUEUE rule behaves like ACCEPT instead, and the packet +will move on to the next table. +.PP +.TP +\fB\-\-queue\-cpu-fanout\fP +Available starting Linux kernel 3.10. When used together with +\fB--queue-balance\fP this will use the CPU ID as an index to map packets to +the queues. The idea is that you can improve performance if there's a queue +per CPU. This requires \fB--queue-balance\fP to be specified. |