[Bug 469] New: recent match doesn't triger with --hitcount > 20
bugzilla-daemon at bugzilla.netfilter.org
bugzilla-daemon at bugzilla.netfilter.org
Tue Apr 11 17:30:40 CEST 2006
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=469
Summary: recent match doesn't triger with --hitcount > 20
Product: netfilter/iptables
Version: linux-2.6.x
Platform: i386
OS/Version: other
Status: NEW
Severity: normal
Priority: P2
Component: ip_tables (kernel)
AssignedTo: laforge at netfilter.org
ReportedBy: tm at del.bg
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW \
-m recent --update --seconds 1800 --hitcount 20 -j DROP
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --set
If --hitcount is anything above 20 recent doesn't work anymore. This is with
2.6.14.6-grsec and I'm going to test with 2.6.16.3-grsec soon.
--
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the netfilter-buglog
mailing list