IPTables limits?
Andrew Kelly
akelly at corisweb.org
Thu Oct 23 11:52:47 UTC 2008
On Wed, 2008-10-22 at 11:30 -0700, Rick Stevens wrote:
> Andrew Kelly wrote:
<snip>
> > Unfortunately, it also foils legitimate accesses often enough. This is a
> > very effective set up, but it comes with the caveat that "connection
> > requests" are counted, and not "connection requests from IP address
> > such-and-such".
>
> No, it tracks the source IP. Two attempts from the same source IP
> trigger the lockout.
Mea Culpa, Rick, you're absolutely right. I just discovered that my
rules weren't even using the recent mod. (Homer Simpson sound)
Thanks, man.
Andy
More information about the Redhat-install-list
mailing list