On Fri, 6 May 2005 12:59am -0400, Jason Opperisano wrote: > > The `max-src-conn' semantics: ``max-src-nodes <number>''. > > >From the man page: "Limits the maximum number of source addresses which > > can simultaneously have state table entries". > > connlimit? Even though connlimit can limit the number of connections per IP address or address range, it can not limit the number of nodes that are able to simultaneously have entries in the conntrack, which is what max-src-nodes does. -- Felipe Kellermann
