From d057f6d6f0c4d17b08760d0025e616fa54bdcc0a Mon Sep 17 00:00:00 2001
From: Jan Engelhardt <jengelh@medozas.de>
Date: Tue, 31 May 2011 22:58:34 +0200
Subject: [PATCH] doc: replace NOTRACK by CT-notrack

---
 extensions/libxt_TARPIT.man | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/extensions/libxt_TARPIT.man b/extensions/libxt_TARPIT.man
index 4f958c5..7479de1 100644
--- a/extensions/libxt_TARPIT.man
+++ b/extensions/libxt_TARPIT.man
@@ -48,11 +48,11 @@ the Linux box, and add:
 .PP
 NOTE:
 If you use the conntrack module while you are using TARPIT, you should also use
-the NOTRACK target, or the kernel will unnecessarily allocate resources for
-each TARPITted connection. To TARPIT incoming connections to the standard IRC
-port while using conntrack, you could:
+unset tracking on the packet, or the kernel will unnecessarily allocate
+resources for each TARPITted connection. To TARPIT incoming connections to the
+standard IRC port while using conntrack, you could:
 .IP
-\-t raw \-A PREROUTING \-p tcp \-\-dport 6667 \-j NOTRACK
+\-t raw \-A PREROUTING \-p tcp \-\-dport 6667 \-j CT \-\-notrack
 .IP
 \-A INPUT \-p tcp \-\-dport 6667 \-j NFLOG
 .IP