Sunday, November 2, 2003, 1:32:00 PM, you wrote: RPJD> On Sun, 2 Nov 2003, Peteris Krumins wrote: >> >> Limit cannot be negated... RPJD> from the iptables man page: RPJD> limit RPJD> This module matches at a limited rate using a token bucket filter. A RPJD> rule using this extension will match until this limit is reached (unless RPJD> the ! flag is used). It can be used in combination with the LOG target to RPJD> give limited logging, for example. Do you believe in everything said? Someone once said that computers will never need more than 640KB of ram.. RPJD> so the man page clearly suggests that the limit match can be negated. RPJD> i'm just not sure how one would do it. what's the syntax? The syntax is: cd /usr/src/linux/net/ipv4/netfilter grep 'invert' ipt_limit.c if [ $? -gt 0 ]; then echo "'!' is not implemented in this match module" fi cd - P.Krumins
