diff options
| author | Timo Teräs <timo.teras@iki.fi> | 2013-08-02 16:10:08 +0300 |
|---|---|---|
| committer | Timo Teräs <timo.teras@iki.fi> | 2013-08-02 16:10:08 +0300 |
| commit | 13bf8b6ab664bcd0b11c2a6dbf9eb3cd319062cd (patch) | |
| tree | d660eaecce7e08fb38a97ca09d134ff191842504 | |
| parent | 085e778404e3058cc2b803d4d0fbd106abad8bd0 (diff) | |
| download | awall-13bf8b6ab664bcd0b11c2a6dbf9eb3cd319062cd.tar.bz2 awall-13bf8b6ab664bcd0b11c2a6dbf9eb3cd319062cd.tar.xz | |
fix ratelimiting to work with bursts properly
| -rw-r--r-- | awall/modules/filter.lua | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/awall/modules/filter.lua b/awall/modules/filter.lua index d21b79e..bdf6ae6 100644 --- a/awall/modules/filter.lua +++ b/awall/modules/filter.lua @@ -212,7 +212,7 @@ function Filter:extraoptfrags() if count > RECENT_MAX_COUNT then ofrags = { { - opts='-m hashlimit --hashlimit-upto '..count..'/second --hashlimit-mode srcip --hashlimit-name '..chain, + opts='-m hashlimit --hashlimit-upto '..count..'/second --hashlimit-burst '..count..' --hashlimit-mode srcip --hashlimit-name '..chain, target=logchain(self.log, 'accept', 'ACCEPT') }, {target='DROP'} |