Called on an incoming ip packet addressed to the local computer
netfilter.ip.local_in
iphdr
Address of IP header
dport
TCP or UDP destination port (ipv4 only)
ipproto_udp
Constant used to signify that the packet protocol is UDP
indev_name
Name of network device packet was received on (if known)
syn
TCP SYN flag (if protocol is TCP; ipv4 only)
outdev_name
Name of network device packet will be routed to (if known)
ipproto_tcp
Constant used to signify that the packet protocol is TCP
psh
TCP PSH flag (if protocol is TCP; ipv4 only)
nf_stolen
Constant used to signify a 'stolen' verdict
pf
Protocol family -- either “ipv4” or “ipv6”
length
The length of the packet buffer contents, in bytes
nf_accept
Constant used to signify an 'accept' verdict
family
IP address family
indev
Address of net_device representing input device, 0 if unknown
nf_repeat
Constant used to signify a 'repeat' verdict
nf_stop
Constant used to signify a 'stop' verdict
protocol
Packet protocol from driver (ipv4 only)
ack
TCP ACK flag (if protocol is TCP; ipv4 only)
sport
TCP or UDP source port (ipv4 only)
outdev
Address of net_device representing output device, 0 if unknown
rst
TCP RST flag (if protocol is TCP; ipv4 only)
daddr
A string representing the destination IP address
nf_queue
Constant used to signify a 'queue' verdict
saddr
A string representing the source IP address
urg
TCP URG flag (if protocol is TCP; ipv4 only)
nf_drop
Constant used to signify a 'drop' verdict
fin
TCP FIN flag (if protocol is TCP; ipv4 only)