From c2794131b445ebccba184066af6d3fb2f38d1f38 Mon Sep 17 00:00:00 2001 From: Henrik Nordstrom Date: Thu, 22 Jan 2004 15:04:24 +0000 Subject: split manpages into per-extension manpage snippet (Henrik Nordstrom) add lots of missing manpage snippets (Harald Welte) --- extensions/libipt_dstlimit.man | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 extensions/libipt_dstlimit.man (limited to 'extensions/libipt_dstlimit.man') diff --git a/extensions/libipt_dstlimit.man b/extensions/libipt_dstlimit.man new file mode 100644 index 00000000..e4a4a5ab --- /dev/null +++ b/extensions/libipt_dstlimit.man @@ -0,0 +1,35 @@ +This module allows you to limit the packet per second (pps) rate on a per +destination IP or per destination port base. As opposed to the `limit' match, +every destination ip / destination port has it's own limit. +.TP +.BI "--dstlimit " "avg" +Maximum average match rate (packets per second unless followed by /sec /minute /hour /day postfixes). +.TP +.BI "--dstlimit-mode " "mode" +The limiting hashmode. Is the specified limit per +.B dstip, dstip-dstport +tuple, +.B srcip-dstip +tuple, or per +.B srcipdstip-dstport +tuple. +.TP +.BI "--dstlimit-name " "name" +Name for /proc/net/ipt_dstlimit/* file entry +.TP +.BI "[" "--dstlimit-burst " "burst" "]" +Number of packets to match in a burst. Default: 5 +.TP +.BI "[" "--dstlimit-htable-size " "size" "]" +Number of buckets in the hashtable +.TP +.BI "[" "--dstlimit-htable-max " "max" "]" +Maximum number of entries in the hashtable +.TP +.BI "[" "--dstlimit-htable-gcinterval " "interval" "]" +Interval between garbage collection runs of the hashtable (in miliseconds). +Default is 1000 (1 second). +.TP +.BI "[" "--dstlimit-htable-expire " "time" +After which time are idle entries expired from hashtable (in miliseconds)? +Default is 10000 (10 seconds). -- cgit v1.2.3