Re: iptables and connlimit
Quote:
Originally posted here by NullDevice
[root@MDK10 firewall]# iptables -I INPUT 1 -p tcp --syn --dport 80 -m connlimit ! --connlimit-above 2 -j ACCEPT
iptables: No chain/target/match by that name.
Remove the exclamation mark (!) and see if that fixes the problem. For what you are doing, you can equally do --connlimit-above 2 -j DROP/REJECT. I believe that is the intended use of the connlimit module.
Re: iptables and connlimit
Quote:
Originally posted here by NullDevice
[root@MDK10 firewall]# iptables -I INPUT 1 -p tcp --syn --dport 80 -m connlimit ! --connlimit-above 2 -j ACCEPT
iptables: No chain/target/match by that name.
Remove the exclamation mark (!) and see if that fixes the problem. For what you are doing, you can equally do --connlimit-above 2 -j DROP/REJECT. I believe that is the intended use of the connlimit module.