On Monday 2008-06-02 15:01, Patrick McHardy wrote: > Jan Engelhardt wrote: >> On Monday 2008-06-02 14:20, Patrick McHardy wrote: >> > Dong Wei wrote: >> > > diff -ruN a/net/netfilter/xt_connlimit.c b/net/netfilter/xt_connlimit.c >> > > --- a/net/netfilter/xt_connlimit.c 2008-06-02 18:48:38.000000000 >> > > +0800 >> > > +++ b/net/netfilter/xt_connlimit.c 2008-06-02 18:50:40.000000000 >> > > +0800 >> > > @@ -75,7 +75,8 @@ >> > > u_int16_t proto = conn->tuplehash[0].tuple.dst.protonum; >> > > >> > > if (proto == IPPROTO_TCP) >> > > - return conn->proto.tcp.state == TCP_CONNTRACK_TIME_WAIT; >> > > + return (conn->proto.tcp.state == TCP_CONNTRACK_TIME_WAIT >> > > + || conn->proto.tcp.state == TCP_CONNTRACK_CLOSE); >> > Looks fine to me. Jan? Acked-by: Jan Engelhardt <jengelh@xxxxxxxxxx> -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
