On Monday 2011-03-07 13:31, benjamin fernandis wrote: >connlimit is working on per second basis or..........? > >can i configure limit per second per ip............. The well-known version of xt_connlimit (as present in Linux 2.6.23 and onwards) supports groups of subnet prefixes of src addresses, and counts the _number of connections_. For _rates_, see xt_hashlimit and/or xt_rateest. xt_connlimit in Linux 2.6.39 will support dstaddr matching. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
