Signed-off-by: Jan Engelhardt <jengelh@xxxxxxxxxx> --- extensions/libxt_recent.man | 4 +++- 1 files changed, 3 insertions(+), 1 deletions(-) diff --git a/extensions/libxt_recent.man b/extensions/libxt_recent.man index 9d5a64e..aa138df 100644 --- a/extensions/libxt_recent.man +++ b/extensions/libxt_recent.man @@ -44,7 +44,9 @@ This option must be used in conjunction with one of \fB\-\-rcheck\fP or address is in the list and packets had been received greater than or equal to the given value. This option may be used along with \fB\-\-seconds\fP to create an even narrower match requiring a certain number of hits within a specific -time frame. +time frame. The maximum value for the hitcount parameter is given by the +"ip_pkt_list_tot" parameter of the xt_recent kernel module. Exceeding this +value on the command line will cause the rule to be rejected. .TP \fB\-\-rttl\fP This option may only be used in conjunction with one of \fB\-\-rcheck\fP or -- 1.6.5.2 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
