Taylor, Grant gtaylor at
Fri Aug 26 23:33:47 CEST 2005

*nod*  You are quite correct sir.

iptables -t filter -A INPUT -i ${WAN} -d ${WANIPAddress} -p tcp --dport 3333 -m connlimit --connlimit-mask 0 --connlimit-above 10 -j DROP

Grant. . . .

Damon Gray wrote:
> There is a way with connlimit to limit from all IPs, add a
> --connlimit-mask 0

More information about the netfilter mailing list