* [PATCH] trivial connlimit manpage fix
@ 2006-05-29 15:53 Phil Oester
2006-05-29 22:36 ` Patrick McHardy
0 siblings, 1 reply; 2+ messages in thread
From: Phil Oester @ 2006-05-29 15:53 UTC (permalink / raw)
To: netfilter-devel
[-- Attachment #1: Type: text/plain, Size: 101 bytes --]
As pointed out by Sérgio Luís Martins in bug #475, the
connlimit example is missing a chain.
Phil
[-- Attachment #2: patch-clman --]
[-- Type: text/plain, Size: 811 bytes --]
diff -ru ipt-orig/extensions/libipt_connlimit.man ipt-new/extensions/libipt_connlimit.man
--- ipt-orig/extensions/libipt_connlimit.man 2005-03-31 22:54:23.000000000 -0800
+++ ipt-new/extensions/libipt_connlimit.man 2006-05-29 08:50:24.000000000 -0700
@@ -10,10 +10,10 @@
Examples:
.TP
# allow 2 telnet connections per client host
-iptables -p tcp --syn --dport 23 -m connlimit --connlimit-above 2 -j REJECT
+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit --connlimit-above 2 -j REJECT
.TP
# you can also match the other way around:
-iptables -p tcp --syn --dport 23 -m connlimit ! --connlimit-above 2 -j ACCEPT
+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit ! --connlimit-above 2 -j ACCEPT
.TP
# limit the nr of parallel http requests to 16 per class C sized \
network (24 bit netmask)
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2006-05-29 22:36 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-05-29 15:53 [PATCH] trivial connlimit manpage fix Phil Oester
2006-05-29 22:36 ` Patrick McHardy
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.