Swifty,
You're right and I was doubly wrong.
What the manual actually says, and what I had in my original message,
was:
"restrict the number of parallel TCP connections to a server per
client IP address (or address block)."
I want to limit what overwhelmingly are divergent UDP connection
attempts to 1000's of servers.
Peter
On 09 Jan 21, at 13:43 , Gáspár Lajos wrote:
Hi!
Peter Renzland írta:
The central question that was never addressed was:
* The iptables manual page states that connlimit limits *incoming*
*tcp* connections. I want to limit what overwhelmingly are
outgoing UDP connections.
Don't get me wrong... but EVERY forwarded connection/packet at first
is incoming on the firewall...
Think about it...
Thanks,
Peter Renzland
Swifty
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
