X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=extensions%2Flibipt_TCPMSS.man;h=30668b025cc5dd55cb7c5cfd0be5698cb73edd77;hb=782ed68bce7c9b3cc29eb4351ec13ede40a7ee49;hp=da1bce2d26b762b7f52ac366365cf502168fb659;hpb=2e293f94e43325cb8cc719e27b43e647842c046d;p=iptables.git

diff --git a/extensions/libipt_TCPMSS.man b/extensions/libipt_TCPMSS.man
index da1bce2..30668b0 100644
--- a/extensions/libipt_TCPMSS.man
+++ b/extensions/libipt_TCPMSS.man
@@ -3,6 +3,9 @@ the maximum size for that connection (usually limiting it to your
 outgoing interface's MTU minus 40).  Of course, it can only be used
 in conjunction with
 .BR "-p tcp" .
+It is only valid in the
+.BR mangle
+table.
 .br
 This target is used to overcome criminally braindead ISPs or servers
 which block ICMP Fragmentation Needed packets.  The symptoms of this
@@ -25,7 +28,7 @@ ssh works fine, but scp hangs after initial handshaking.
 Workaround: activate this option and add a rule to your firewall
 configuration like:
 .nf
- iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN \\
+ iptables -t mangle -A FORWARD -p tcp --tcp-flags SYN,RST SYN \\
              -j TCPMSS --clamp-mss-to-pmtu
 .fi
 .TP