On 24. Juli 2014 09:49:27 GMT+01:00, Florian Westphal <fw@xxxxxxxxx> wrote: >Josh Hunt <johunt@xxxxxxxxxx> wrote: >> Currently when we do do this the new parameters are not enforced. > >Note that: > >-A INPUT -m hashlimit --hashlimit-upto 10/sec --hashlimit-burst 10 >--hashlimit-name test >-A INPUT -m hashlimit --hashlimit-upto 1/sec --hashlimit-burst 10 >--hashlimit-name test > >doesn't work as expected either (rule #2 uses config options of #1). > >I think is behaviour is so unexpected that I would consider this a >bug... True, but it's a bug that has existed forever and I've seen scripts that actually rely on this. I'm not sure if we can silently change this behaviour. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
