The limit module

To: debian-firewall@lists.debian.org
Subject: The limit module
From: iruum0lap@yahoo.co.uk
Date: Wed, 23 Oct 2002 06:52:38 +0300
Message-id: <[🔎] 20021023035238.GA1257@candy>

Hei

Put the following rule in a fw. I thought that it work so that only 3 logs per 
minute would be made of ping requests. 

  # log and accept ping requests
  $IPT -A INPUT -p icmp -s 0/0 --icmp-type 8 -m limit --limit 3/minute -j LOG --log-prefix "ping"
  $IPT -A INPUT -p icmp -s 0/0 --icmp-type 8 -j ACCEPT

Doesn't seem to work that way. Seems that all ping requests are logged - a bit 
irritating as I have a friend who often leaves ping running and goes and
does other stuff when he is testing the connection to this machine and the 
logs get even more boring to read than normal. 

Am I missing something?

t.irvine

-- 

 Whoever thinks a faultless piece to see,
 Thinks what ne'er was, nor is, nor ne'er shall be.

 Alexander Pope, An Essay On Criticism.

Reply to:

Follow-Ups:
- Re: The limit module
  - From: Michael Kreilmeier <michi@kreilmeier.at>
- Re: The limit module
  - From: irvine@vuosaari.hai.fi

Prev by Date: Re: ICMP Questions for IPtables Rules
Next by Date: Re: The limit module
Previous by thread: Re: ICMP Questions for IPtables Rules
Next by thread: Re: The limit module
Index(es):
- Date
- Thread