1*a71a9546SAutomerger Merge WorkerThis module attempts to match various characteristics of the packet creator, 2*a71a9546SAutomerger Merge Workerfor locally generated packets. This match is only valid in the OUTPUT and 3*a71a9546SAutomerger Merge WorkerPOSTROUTING chains. Forwarded packets do not have any socket associated with 4*a71a9546SAutomerger Merge Workerthem. Packets from kernel threads do have a socket, but usually no owner. 5*a71a9546SAutomerger Merge Worker.TP 6*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-uid\-owner\fP \fIusername\fP 7*a71a9546SAutomerger Merge Worker.TP 8*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-uid\-owner\fP \fIuserid\fP[\fB\-\fP\fIuserid\fP] 9*a71a9546SAutomerger Merge WorkerMatches if the packet socket's file structure (if it has one) is owned by the 10*a71a9546SAutomerger Merge Workergiven user. You may also specify a numerical UID, or an UID range. 11*a71a9546SAutomerger Merge Worker.TP 12*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-gid\-owner\fP \fIgroupname\fP 13*a71a9546SAutomerger Merge Worker.TP 14*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-gid\-owner\fP \fIgroupid\fP[\fB\-\fP\fIgroupid\fP] 15*a71a9546SAutomerger Merge WorkerMatches if the packet socket's file structure is owned by the given group. 16*a71a9546SAutomerger Merge WorkerYou may also specify a numerical GID, or a GID range. 17*a71a9546SAutomerger Merge Worker.TP 18*a71a9546SAutomerger Merge Worker\fB\-\-suppl\-groups\fP 19*a71a9546SAutomerger Merge WorkerCauses group(s) specified with \fB\-\-gid-owner\fP to be also checked in the 20*a71a9546SAutomerger Merge Workersupplementary groups of a process. 21*a71a9546SAutomerger Merge Worker.TP 22*a71a9546SAutomerger Merge Worker[\fB!\fP] \fB\-\-socket\-exists\fP 23*a71a9546SAutomerger Merge WorkerMatches if the packet is associated with a socket. 24