Hey guys,
I must be missing something with the limit option.
I thought I would expand on my firewall by utilizing limits. As a test I
put in the following command:
iptables -A INPUT -m limit -p icmp --limit +1/h --limit-burst 5
iptables -A INPUT -s xxx.xxx.xxx.xxx -p icmp -j ACCEPT
iptables -A INPUT -s 0/0 -p icmp -j DROP
The intent that I could ping from xxx.xxx.xxx.xxx and see only 6 pings be
successful (5 burst and 1 per hour).
However the remote ping just keeps on rolling along without a limit.
If I comment out the ACCEPT of xxx.xxx.xxx.xxx pinging stops since it is
dropped.
I am running RedHat 9.0 kernel 2.4.20-20.9
