doc: no need to define a set in ct state

ct state are flags, no need to define a set for this.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/doc/statements.txt b/doc/statements.txt
index c1fd5e557f10be6f719b23393fb8e60fe3a85e46..6fc0bda0a19fdcf45a8c5f5f550b88a27b8ad366 100644 (file)
--- a/doc/statements.txt
+++ b/doc/statements.txt
@@ -570,7 +570,7 @@ will be out-of-flow packets that were not matched by SYNPROXY.
     table ip x {
             chain z {
                     type filter hook input priority filter; policy accept;
-                    ct state { invalid, untracked } synproxy mss 1460 wscale 9 timestamp sack-perm
+                    ct state invalid, untracked synproxy mss 1460 wscale 9 timestamp sack-perm
                     ct state invalid drop
             }
     }