Jan thank you so much..
I have been exploring severla options. Yes iam aware the risk of
blocking a country but one only serves a select group of countries as
the end user so...
Finally can you please help me understand why this rule alone does not
drop packets from an IP that is sending more then 3 requests per
minute to port 80?
iptables -A INPUT -p tcp --dport 80 -m state --state NEW -m limit
--limit 3/min --limit-burst 3 -j DROP
Regards,
JP
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
