diff options
authorBart De Schuymer <>2004-10-23 11:20:34 +0000
committerBart De Schuymer <>2004-10-23 11:20:34 +0000
commit8690a688209ab42518b9399a69fe2b45230c4a86 (patch)
parent2c6c2f8044182e88c93390af22526ef923b8f658 (diff)
add limit entry
1 files changed, 18 insertions, 0 deletions
diff --git a/userspace/ebtables2/ebtables.8 b/userspace/ebtables2/ebtables.8
index 41829b5..79014b6 100644
--- a/userspace/ebtables2/ebtables.8
+++ b/userspace/ebtables2/ebtables.8
@@ -561,6 +561,24 @@ The destination port or port range for ip protocols 6 (TCP) and
17 (UDP). The flag
.B --ip-dport
is an alias for this option.
+.SS limit
+This module matches at a limited rate using a token bucket filter.
+A rule using this extension will match until this limit is reached.
+It can be used with the
+.B --log
+to give limited logging, for example. Its use is the same as the limit
+match of iptables.
+.BR "--limit " "[\fIvalue\fP]"
+Maximum average matching rate: specified as a number, with an optional
+`/second', `/minute', `/hour', or `/day' suffix; the default is 3/hour.
+.BR "--limit-burst " "[\fInumber\fP]"
+Maximum initial number of packets to match: this number gets recharged by
+one every time the limit specified above is not reached, up to this
+number; the default is 5.
+.SS pkttype
.SS mark_m
.BR "--mark " "[!] [\fIvalue\fP][/\fImask\fP]"