[Bug 1320] New: iptables hashlimit - problem with traffic limitation
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Tue Feb 5 22:34:30 CET 2019
https://bugzilla.netfilter.org/show_bug.cgi?id=1320
Bug ID: 1320
Summary: iptables hashlimit - problem with traffic limitation
Product: iptables
Version: 1.6.x
Hardware: All
OS: Debian GNU/Linux
Status: NEW
Severity: major
Priority: P5
Component: iptables
Assignee: netfilter-buglog at lists.netfilter.org
Reporter: piotr.lasak at atman.pl
I would like limits traffic between interfaces to 5000 pps and I set rule:
iptables -A FORWARD -i eth1 -o eth2 -m hashlimit --hashlimit-above 5000/sec
--hashlimit-burst 5 --hashlimit-name xx-101-412 -j DROP
But above rule, limitated traffic to max 1255 pps, it shoud be ~5000 pps.
If I set these same rule with option "--hashlimit-burst 50" everything works
properly.
iptables -A FORWARD -i eth1 -o eth2 -m hashlimit --hashlimit-above 5000/sec
--hashlimit-burst 50 --hashlimit-name xx-101-412 -j DROP
Can you help me with that?
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190205/1ec2eac9/attachment.html>
More information about the netfilter-buglog
mailing list