Re: Connlimit problem k2.6.18.2 , ipt1.3.7

NetFilter

Re: Connlimit problem k2.6.18.2 , ipt1.3.7

To:	netfilter@lists.netfilter.org
Subject:	Re: Connlimit problem k2.6.18.2 , ipt1.3.7
From:	Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Date:	Sun, 11 Mar 2007 18:14:55 +0100
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
In-reply-to:	<00fd01c76274$a089c3e0$3464000a@oksystem.local>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Organization:	Plouf !
References:	<00fd01c76274$a089c3e0$3464000a@oksystem.local>
Sender:	netfilter-bounces@lists.netfilter.org
User-agent:	Mozilla Thunderbird 1.0.6 (Windows/20050716)

Hello,

Bc. Miroslav Kopecek a écrit :


I can't add connlimit rule? What's wrong? Any suggestion?

-----------------------------------------
iptables -m connlimit -h
connlimit v1.3.7 options:
[!] --connlimit-above n         match if the number of existing tcp
connections is (not) above n
 --connlimit-mask n             group hosts using mask

-----------------------------------------
RouterBM:/home/kopecek# iptables -A FORWARD -p tcp -s 10.88.99.71 -m
connlimit --connlimit-above 300 --connlimit-mask 32  -j REJECT --reject-with
tcp-reset
iptables: No chain/target/match by that name

Your kernel probably does not support the connlimit match. The connlimitmatch is not part of the standard kernel. It used to be included as akernel patch in the patch-o-matic-ng, but has been removed from thedaily snapshots since 2006/07/26.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Franck Joncourt RE: Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Pascal Hambourg <= Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Jan Engelhardt RE: Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek RE: Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek RE: Connlimit problem k2.6.18.2 , ipt1.3.7, ArcosCom Linux User RE: Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek RE: Connlimit problem k2.6.18.2 , ipt1.3.7, ArcosCom Linux User

Previous by Date:	Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Franck Joncourt
Next by Date:	Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Jan Engelhardt
Previous by Thread:	RE: Connlimit problem k2.6.18.2 , ipt1.3.7, Bc. Miroslav Kopecek
Next by Thread:	Re: Connlimit problem k2.6.18.2 , ipt1.3.7, Jan Engelhardt
Indexes:	[Date] [Thread] [Top] [All Lists]