1 This module attempts to match various characteristics of the packet creator, 2 for locally generated packets. This match is only valid in the OUTPUT and 3 POSTROUTING chains. Forwarded packets do not have any socket associated with 4 them. Packets from kernel threads do have a socket, but usually no owner. 5 .TP 6 [\fB!\fP] \fB\-\-uid\-owner\fP \fIusername\fP 7 .TP 8 [\fB!\fP] \fB\-\-uid\-owner\fP \fIuserid\fP[\fB\-\fP\fIuserid\fP] 9 Matches if the packet socket's file structure (if it has one) is owned by the 10 given user. You may also specify a numerical UID, or an UID range. 11 .TP 12 [\fB!\fP] \fB\-\-gid\-owner\fP \fIgroupname\fP 13 .TP 14 [\fB!\fP] \fB\-\-gid\-owner\fP \fIgroupid\fP[\fB\-\fP\fIgroupid\fP] 15 Matches if the packet socket's file structure is owned by the given group. 16 You may also specify a numerical GID, or a GID range. 17 .TP 18 [\fB!\fP] \fB\-\-socket\-exists\fP 19 Matches if the packet is associated with a socket. 20
