On Tuesday 11 of October 2011, Adishesh M wrote: > > I want to limit the number of packets logged to one packet per second > (1/s). For this I am using below rules and it is not working. > > iptables -A INPUT -d 10.255.13.157 -m limit --limit 1/sec -j NFLOG > --nflog-group 1 What exactly does "is not working" mean? My guess is that iptables complains about missing --limit-burst value. If you really don't want more than one message per second, try 1, but for a real-world configuration I would suggest a bit more. Michal Kubeček -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html