21 Feb
2011
21 Feb
'11
7:34 a.m.
Op 20-02-11 23:06, Valentijn Sessink schreef:
can be concatenated so that you don't need a separate "block" chain anymore, as follows: ip6tables -A INPUT -m recent --rcheck --name syslogblock --seconds 900 --hitcount 15 -m recent --rcheck --name block --set But I'm not sure, I'll have to check.
I checked, the iptables devs say that iptables does short circuit evaluation, so the above should work nicely. Best regards, Valentijn