Hello all, I read today the thread "next topic: --limit and --burst-limit" and some thoughts came up about my rules. I have the followings : -A internet-firewall -p icmp -m icmp --icmp-type 8 -m limit --limit 30/min -j ACCEPT -A internet-firewall -p icmp -m icmp --icmp-type 8 -m limit --limit 1/min -j LOG --log-prefix "PoD attack! " --log-level 6 -A internet-firewall -p icmp -m icmp --icmp-type 8 -j DROP SO with the rule 1 i accept only 30 packets per minute with second rule i logged only the next 30 packets,actually only the first of the 30 packtes. and the third rule drops the next 30 packets. I just want to allow only 30 packets per minute and log only 1 dropped packet per limit. So do i do what i want? Thanks in advance, Pavlos -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ I love having the feeling of being in control while i have the sensation of speed The surfer of life ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
