* match ??
@ 2004-11-02 4:19 Brent Clark
0 siblings, 0 replies; 3+ messages in thread
From: Brent Clark @ 2004-11-02 4:19 UTC (permalink / raw)
To: netfilter
Hi
Could anyone please explain to me the lamens terms for --match -limit.
I dont understand whats it for, or where you use it.
Kind Regards
Brent Clark
^ permalink raw reply [flat|nested] 3+ messages in thread
* match ??
@ 2004-11-02 4:23 Brent Clark
2004-11-02 13:52 ` Jason Opperisano
0 siblings, 1 reply; 3+ messages in thread
From: Brent Clark @ 2004-11-02 4:23 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 156 bytes --]
Hi
Could anyone please explain to me the lamens terms for --match -limit.
I dont understand whats it for, or where you use it.
Kind Regards
Brent Clark
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: match ??
2004-11-02 4:23 Brent Clark
@ 2004-11-02 13:52 ` Jason Opperisano
0 siblings, 0 replies; 3+ messages in thread
From: Jason Opperisano @ 2004-11-02 13:52 UTC (permalink / raw)
To: netfilter
On Tue, Nov 02, 2004 at 06:23:22AM +0200, Brent Clark wrote:
> Hi
>
> Could anyone please explain to me the lamens terms for --match -limit.
> I dont understand whats it for, or where you use it.
>
> Kind Regards
> Brent Clark
the limit match limits the rate at which a rule will match.
the rule will match the average number events per time period specified
by "--limit", but may match up to "--limit-burst" number of events
initially, and for every "--limit" time period that passes without
a match.
it is most commonly used in rules to (a) throttle the volume of logging
that can take place and (b) protect from SYN floods.
-j
--
"It is better to remain silent and thought a fool, than open your
mouth and remove all doubt."
--The Simpsons
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2004-11-02 13:52 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-11-02 4:19 match ?? Brent Clark
-- strict thread matches above, loose matches on Subject: below --
2004-11-02 4:23 Brent Clark
2004-11-02 13:52 ` Jason Opperisano
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox