I've rate-limited the incoming connections to some ports. The rate limiting works, but it doesn't log to syslog... other non-rate-limiting rules where LOG targets exist work, so I know logging in principle works. What am I missing? No LOG target for this module? :) Rule: # POP3 (max 5 per minute) $FW -I INPUT -p tcp --dport 110 -i eth0 -m state --state NEW -m recent --set $FW -I INPUT -p tcp --dport 110 -i eth0 -m state --state NEW -m recent --update --seconds 60 --hitcount 5 -j LOG --log-level warn --log-prefix "RLIMIT[POP3]: " $FW -I INPUT -p tcp --dport 110 -i eth0 -m state --state NEW -m recent --update --seconds 60 --hitcount 5 -j REJECT Also, is there any advantage to use DROP instead of REJECT? Just curious. J - : send the line "unsubscribe linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
