summaryrefslogtreecommitdiffstats
path: root/extensions
diff options
context:
space:
mode:
author/C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org>2006-05-29 22:59:13 +0000
committer/C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org>2006-05-29 22:59:13 +0000
commite81fdbbf540dac50e68b00eda6dac77bb58e8935 (patch)
tree5967938c52bad043064c8b4cf0cc851d8758c45f /extensions
parentf7f70a8a12bb0994ea5a8a883c71429a62e47c04 (diff)
[PATCH] trivial connlimit manpage fix (Phil Oester <kernel@linuxace.com>)
Diffstat (limited to 'extensions')
-rw-r--r--extensions/libipt_connlimit.man4
1 files changed, 2 insertions, 2 deletions
diff --git a/extensions/libipt_connlimit.man b/extensions/libipt_connlimit.man
index 404ee32..55e53d1 100644
--- a/extensions/libipt_connlimit.man
+++ b/extensions/libipt_connlimit.man
@@ -10,10 +10,10 @@ group hosts using mask
Examples:
.TP
# allow 2 telnet connections per client host
-iptables -p tcp --syn --dport 23 -m connlimit --connlimit-above 2 -j REJECT
+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit --connlimit-above 2 -j REJECT
.TP
# you can also match the other way around:
-iptables -p tcp --syn --dport 23 -m connlimit ! --connlimit-above 2 -j ACCEPT
+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit ! --connlimit-above 2 -j ACCEPT
.TP
# limit the nr of parallel http requests to 16 per class C sized \
network (24 bit netmask)