Taylor, Grant gtaylor at
Thu Apr 21 00:39:53 CEST 2005

> What would be the recommended the rule for matchlimit FROM a specfic
> ipaddess.

iptables -t filter -A INPUT -s $Source_IP_of_attack -d $Your_IP -m limit ! --limit 5/minute --limit-burst 5 -j DROP

I think you will want the "!" in there as you want to drop any packets that are over the limit.  You will need to reference the man page and play with this for a while.

One think to keep in mind is that this will only limit attacks coming from $Source_IP_of_attack and this may never happen again.  Thus I don't know how practice this rule is.  But this is my answer to your question.

Grant. . . .

More information about the netfilter mailing list