Hello, Jan Engelhardt a écrit :
-m statistic --mode random It might not exist yet either.
Indeed. The 'statistic' match was included in kernel 2.6.18 and requires iptables >= 1.3.6.
kernel: 2.6.16-rc5 iptables: 1.3.4
The 'random' match is supported by iptables 1.3.4, but not by the standard kernel. It needs to be patched with the 'connlimit' patch which used to be included in the patch-o-matic-ng snapshots until patch-o-matic-ng-20060511. Unfortunately such old snapshots are not available on the Netfilter main server any more. They may still be available in some archives or mirrors out there. I think I kept a copy.
