1*a71a9546SAutomerger Merge WorkerModule matches or adds connlabels to a connection. 2*a71a9546SAutomerger Merge Workerconnlabels are similar to connmarks, except labels are bit-based; i.e. 3*a71a9546SAutomerger Merge Workerall labels may be attached to a flow at the same time. 4*a71a9546SAutomerger Merge WorkerUp to 128 unique labels are currently supported. 5*a71a9546SAutomerger Merge Worker.TP 6*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-label\fP \fBname\fP 7*a71a9546SAutomerger Merge Workermatches if label \fBname\fP has been set on a connection. 8*a71a9546SAutomerger Merge WorkerInstead of a name (which will be translated to a number, see EXAMPLE below), 9*a71a9546SAutomerger Merge Workera number may be used instead. Using a number always overrides connlabel.conf. 10*a71a9546SAutomerger Merge Worker.TP 11*a71a9546SAutomerger Merge Worker\fB\-\-set\fP 12*a71a9546SAutomerger Merge Workerif the label has not been set on the connection, set it. 13*a71a9546SAutomerger Merge WorkerNote that setting a label can fail. This is because the kernel allocates the 14*a71a9546SAutomerger Merge Workerconntrack label storage area when the connection is created, and it only 15*a71a9546SAutomerger Merge Workerreserves the amount of memory required by the ruleset that exists at 16*a71a9546SAutomerger Merge Workerthe time the connection is created. 17*a71a9546SAutomerger Merge WorkerIn this case, the match will fail (or succeed, in case \fB\-\-label\fP 18*a71a9546SAutomerger Merge Workeroption was negated). 19*a71a9546SAutomerger Merge Worker.PP 20*a71a9546SAutomerger Merge WorkerThis match depends on libnetfilter_conntrack 1.0.4 or later. 21*a71a9546SAutomerger Merge WorkerLabel translation is done via the \fB/etc/xtables/connlabel.conf\fP configuration file. 22*a71a9546SAutomerger Merge Worker.PP 23*a71a9546SAutomerger Merge WorkerExample: 24*a71a9546SAutomerger Merge Worker.IP 25*a71a9546SAutomerger Merge Worker.nf 26*a71a9546SAutomerger Merge Worker0 eth0-in 27*a71a9546SAutomerger Merge Worker1 eth0-out 28*a71a9546SAutomerger Merge Worker2 ppp-in 29*a71a9546SAutomerger Merge Worker3 ppp-out 30*a71a9546SAutomerger Merge Worker4 bulk-traffic 31*a71a9546SAutomerger Merge Worker5 interactive 32*a71a9546SAutomerger Merge Worker.fi 33*a71a9546SAutomerger Merge Worker.PP 34