diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-05-30 12:40:32 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-05-30 12:41:36 +0200 |
commit | 239a8fbbaa061d55c653922e158d8ba352eaf57f (patch) | |
tree | e7bf9ddbae11c60c8488213a36b3cc6a9484f354 /src | |
parent | 2c4b5ea773c606cd65b928ed151157a403a09d45 (diff) |
statement: old kernels are allowing burst zero, don't print it
Don't print limit burst zero which was the default value in old kernels,
this is not allowed in more recent kernels that now operate like
iptables xt_limit which is what users are expecting.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src')
-rw-r--r-- | src/statement.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/statement.c b/src/statement.c index fa0cd77c..ac151737 100644 --- a/src/statement.c +++ b/src/statement.c @@ -358,7 +358,7 @@ static void limit_stmt_print(const struct stmt *stmt, struct output_ctx *octx) nft_print(octx, "limit rate %s%" PRIu64 "/%s", inv ? "over " : "", stmt->limit.rate, get_unit(stmt->limit.unit)); - if (stmt->limit.burst != 5) + if (stmt->limit.burst && stmt->limit.burst != 5) nft_print(octx, " burst %u packets", stmt->limit.burst); break; |