aboutsummaryrefslogtreecommitdiffstats
path: root/test/output/rules6-save
diff options
context:
space:
mode:
Diffstat (limited to 'test/output/rules6-save')
-rw-r--r--test/output/rules6-save996
1 files changed, 699 insertions, 297 deletions
diff --git a/test/output/rules6-save b/test/output/rules6-save
index 4843615..a3fe183 100644
--- a/test/output/rules6-save
+++ b/test/output/rules6-save
@@ -29,11 +29,65 @@
:limit-118 - [0:0]
:limit-119 - [0:0]
:limit-12 - [0:0]
+:limit-120 - [0:0]
+:limit-121 - [0:0]
+:limit-122 - [0:0]
+:limit-123 - [0:0]
+:limit-124 - [0:0]
+:limit-125 - [0:0]
+:limit-126 - [0:0]
+:limit-127 - [0:0]
+:limit-128 - [0:0]
+:limit-129 - [0:0]
:limit-13 - [0:0]
+:limit-130 - [0:0]
+:limit-131 - [0:0]
+:limit-132 - [0:0]
+:limit-133 - [0:0]
+:limit-134 - [0:0]
+:limit-135 - [0:0]
+:limit-136 - [0:0]
+:limit-137 - [0:0]
+:limit-138 - [0:0]
+:limit-139 - [0:0]
:limit-14 - [0:0]
+:limit-140 - [0:0]
+:limit-141 - [0:0]
+:limit-142 - [0:0]
+:limit-143 - [0:0]
+:limit-144 - [0:0]
+:limit-145 - [0:0]
+:limit-146 - [0:0]
+:limit-147 - [0:0]
+:limit-148 - [0:0]
+:limit-149 - [0:0]
:limit-15 - [0:0]
+:limit-150 - [0:0]
+:limit-151 - [0:0]
+:limit-152 - [0:0]
+:limit-153 - [0:0]
+:limit-154 - [0:0]
+:limit-155 - [0:0]
+:limit-156 - [0:0]
+:limit-157 - [0:0]
+:limit-158 - [0:0]
+:limit-159 - [0:0]
:limit-16 - [0:0]
+:limit-160 - [0:0]
+:limit-161 - [0:0]
+:limit-162 - [0:0]
+:limit-163 - [0:0]
+:limit-164 - [0:0]
+:limit-165 - [0:0]
+:limit-166 - [0:0]
+:limit-167 - [0:0]
+:limit-168 - [0:0]
+:limit-169 - [0:0]
:limit-17 - [0:0]
+:limit-170 - [0:0]
+:limit-171 - [0:0]
+:limit-172 - [0:0]
+:limit-173 - [0:0]
:limit-18 - [0:0]
:limit-19 - [0:0]
:limit-2 - [0:0]
@@ -135,12 +189,15 @@
:logaccept-8 - [0:0]
:logaccept-final-0 - [0:0]
:logaccept-final-1 - [0:0]
+:logaccept-final-10 - [0:0]
:logaccept-final-2 - [0:0]
:logaccept-final-3 - [0:0]
:logaccept-final-4 - [0:0]
:logaccept-final-5 - [0:0]
:logaccept-final-6 - [0:0]
:logaccept-final-7 - [0:0]
+:logaccept-final-8 - [0:0]
+:logaccept-final-9 - [0:0]
:logdrop-0 - [0:0]
:logdrop-1 - [0:0]
:logdrop-10 - [0:0]
@@ -174,8 +231,26 @@
:logdrop-36 - [0:0]
:logdrop-37 - [0:0]
:logdrop-38 - [0:0]
+:logdrop-39 - [0:0]
:logdrop-4 - [0:0]
+:logdrop-40 - [0:0]
+:logdrop-41 - [0:0]
+:logdrop-42 - [0:0]
+:logdrop-43 - [0:0]
+:logdrop-44 - [0:0]
+:logdrop-45 - [0:0]
+:logdrop-46 - [0:0]
+:logdrop-47 - [0:0]
+:logdrop-48 - [0:0]
+:logdrop-49 - [0:0]
:logdrop-5 - [0:0]
+:logdrop-50 - [0:0]
+:logdrop-51 - [0:0]
+:logdrop-52 - [0:0]
+:logdrop-53 - [0:0]
+:logdrop-54 - [0:0]
+:logdrop-55 - [0:0]
+:logdrop-56 - [0:0]
:logdrop-6 - [0:0]
:logdrop-7 - [0:0]
:logdrop-8 - [0:0]
@@ -186,6 +261,42 @@
:tarpit - [0:0]
-A FORWARD -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A FORWARD -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A FORWARD -j limit-115
+-A FORWARD -j limit-114
+-A FORWARD -j limit-113
+-A FORWARD -j limit-112
+-A FORWARD -j limit-111
+-A FORWARD -j limit-110
+-A FORWARD -j limit-109
+-A FORWARD -j limit-108
+-A FORWARD -j limit-107
+-A FORWARD -j limit-106
+-A FORWARD -j limit-105
+-A FORWARD -j limit-104
+-A FORWARD -j limit-103
+-A FORWARD -j limit-102
+-A FORWARD -j limit-101
+-A FORWARD -j limit-100
+-A FORWARD -j limit-99
+-A FORWARD -j limit-98
+-A FORWARD -j limit-97
+-A FORWARD -j limit-96
+-A FORWARD -j limit-95
+-A FORWARD -j limit-94
+-A FORWARD -j limit-93
+-A FORWARD -j limit-92
+-A FORWARD -j limit-91
+-A FORWARD -j limit-90
+-A FORWARD -j limit-89
+-A FORWARD -j limit-88
+-A FORWARD -j limit-87
+-A FORWARD -j limit-86
+-A FORWARD -j limit-85
+-A FORWARD -j limit-84
+-A FORWARD -j limit-83
+-A FORWARD -j limit-82
+-A FORWARD -j limit-81
+-A FORWARD -j limit-80
-A FORWARD -j limit-79
-A FORWARD -j limit-78
-A FORWARD -j limit-77
@@ -208,24 +319,6 @@
-A FORWARD -j limit-60
-A FORWARD -j limit-59
-A FORWARD -j limit-58
--A FORWARD -j limit-57
--A FORWARD -j limit-56
--A FORWARD -j limit-55
--A FORWARD -j limit-54
--A FORWARD -j limit-53
--A FORWARD -j limit-52
--A FORWARD -j limit-51
--A FORWARD -j limit-50
--A FORWARD -j limit-49
--A FORWARD -j limit-48
--A FORWARD -j limit-47
--A FORWARD -j limit-46
--A FORWARD -j limit-45
--A FORWARD -j limit-44
--A FORWARD -j limit-43
--A FORWARD -j limit-42
--A FORWARD -j limit-41
--A FORWARD -j limit-40
-A FORWARD -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A FORWARD -j ACCEPT
-A FORWARD -j ACCEPT
@@ -273,6 +366,24 @@
-A FORWARD -o eth1 -d fc00::/7 -j limit-37
-A FORWARD -o eth1 -d fc00::/7 -j limit-38
-A FORWARD -o eth1 -d fc00::/7 -j limit-39
+-A FORWARD -o eth1 -d fc00::/7 -j limit-40
+-A FORWARD -o eth1 -d fc00::/7 -j limit-41
+-A FORWARD -o eth1 -d fc00::/7 -j limit-42
+-A FORWARD -o eth1 -d fc00::/7 -j limit-43
+-A FORWARD -o eth1 -d fc00::/7 -j limit-44
+-A FORWARD -o eth1 -d fc00::/7 -j limit-45
+-A FORWARD -o eth1 -d fc00::/7 -j limit-46
+-A FORWARD -o eth1 -d fc00::/7 -j limit-47
+-A FORWARD -o eth1 -d fc00::/7 -j limit-48
+-A FORWARD -o eth1 -d fc00::/7 -j limit-49
+-A FORWARD -o eth1 -d fc00::/7 -j limit-50
+-A FORWARD -o eth1 -d fc00::/7 -j limit-51
+-A FORWARD -o eth1 -d fc00::/7 -j limit-52
+-A FORWARD -o eth1 -d fc00::/7 -j limit-53
+-A FORWARD -o eth1 -d fc00::/7 -j limit-54
+-A FORWARD -o eth1 -d fc00::/7 -j limit-55
+-A FORWARD -o eth1 -d fc00::/7 -j limit-56
+-A FORWARD -o eth1 -d fc00::/7 -j limit-57
-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-0
-A FORWARD -j ACCEPT
@@ -297,16 +408,25 @@
-A FORWARD -j ACCEPT
-A FORWARD -j logaccept-final-7
-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
+-A FORWARD -j logaccept-final-8
+-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
+-A FORWARD -j logaccept-final-9
+-A FORWARD -j ACCEPT
+-A FORWARD -j ACCEPT
+-A FORWARD -j logaccept-final-10
+-A FORWARD -j ACCEPT
-A FORWARD -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A FORWARD -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A FORWARD -j ACCEPT
--A FORWARD -j logdrop-37
+-A FORWARD -j logdrop-55
-A FORWARD
-A FORWARD -j ACCEPT
-A FORWARD -j DROP
-A FORWARD
-A FORWARD -j logaccept-8
--A FORWARD -j logdrop-38
+-A FORWARD -j logdrop-56
-A FORWARD -j logpass-0
-A FORWARD -j ACCEPT
-A FORWARD -j DROP
@@ -339,6 +459,42 @@
-A FORWARD -p icmpv6 -j icmp-routing
-A INPUT -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A INPUT -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A INPUT -j limit-115
+-A INPUT -j limit-114
+-A INPUT -j limit-113
+-A INPUT -j limit-112
+-A INPUT -j limit-111
+-A INPUT -j limit-110
+-A INPUT -j limit-109
+-A INPUT -j limit-108
+-A INPUT -j limit-107
+-A INPUT -j limit-106
+-A INPUT -j limit-105
+-A INPUT -j limit-104
+-A INPUT -j limit-103
+-A INPUT -j limit-102
+-A INPUT -j limit-101
+-A INPUT -j limit-100
+-A INPUT -j limit-99
+-A INPUT -j limit-98
+-A INPUT -j limit-97
+-A INPUT -j limit-96
+-A INPUT -j limit-95
+-A INPUT -j limit-94
+-A INPUT -j limit-93
+-A INPUT -j limit-92
+-A INPUT -j limit-91
+-A INPUT -j limit-90
+-A INPUT -j limit-89
+-A INPUT -j limit-88
+-A INPUT -j limit-87
+-A INPUT -j limit-86
+-A INPUT -j limit-85
+-A INPUT -j limit-84
+-A INPUT -j limit-83
+-A INPUT -j limit-82
+-A INPUT -j limit-81
+-A INPUT -j limit-80
-A INPUT -j limit-79
-A INPUT -j limit-78
-A INPUT -j limit-77
@@ -361,24 +517,6 @@
-A INPUT -j limit-60
-A INPUT -j limit-59
-A INPUT -j limit-58
--A INPUT -j limit-57
--A INPUT -j limit-56
--A INPUT -j limit-55
--A INPUT -j limit-54
--A INPUT -j limit-53
--A INPUT -j limit-52
--A INPUT -j limit-51
--A INPUT -j limit-50
--A INPUT -j limit-49
--A INPUT -j limit-48
--A INPUT -j limit-47
--A INPUT -j limit-46
--A INPUT -j limit-45
--A INPUT -j limit-44
--A INPUT -j limit-43
--A INPUT -j limit-42
--A INPUT -j limit-41
--A INPUT -j limit-40
-A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -j ACCEPT
@@ -411,56 +549,83 @@
-A INPUT -j ACCEPT
-A INPUT -j logaccept-final-7
-A INPUT -j ACCEPT
--A INPUT -i eth0 -j limit-80
--A INPUT -i eth0 -j limit-81
--A INPUT -i eth0 -j limit-82
--A INPUT -i eth0 -j limit-83
--A INPUT -i eth0 -j limit-84
--A INPUT -i eth0 -j limit-85
--A INPUT -i eth0 -j limit-86
--A INPUT -i eth0 -j limit-87
--A INPUT -i eth0 -j limit-88
--A INPUT -i eth0 -j limit-89
--A INPUT -i eth0 -j limit-90
--A INPUT -i eth0 -j limit-91
--A INPUT -i eth0 -j limit-92
--A INPUT -i eth0 -j limit-93
--A INPUT -i eth0 -j limit-94
--A INPUT -i eth0 -j limit-95
--A INPUT -i eth0 -j limit-96
--A INPUT -i eth0 -j limit-97
--A INPUT -i eth0 -j limit-98
--A INPUT -i eth0 -j limit-99
--A INPUT -i eth0 -j limit-100
--A INPUT -i eth0 -j limit-101
--A INPUT -i eth0 -j limit-102
--A INPUT -i eth0 -j limit-103
--A INPUT -i eth0 -j limit-104
--A INPUT -i eth0 -j limit-105
--A INPUT -i eth0 -j limit-106
--A INPUT -i eth0 -j limit-107
--A INPUT -i eth0 -j limit-108
--A INPUT -i eth0 -j limit-109
--A INPUT -i eth0 -j limit-110
--A INPUT -i eth0 -j limit-111
--A INPUT -i eth0 -j limit-112
--A INPUT -i eth0 -j limit-113
--A INPUT -i eth0 -j limit-114
--A INPUT -i eth0 -j limit-115
+-A INPUT -j ACCEPT
+-A INPUT -j logaccept-final-8
+-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
+-A INPUT -j logaccept-final-9
+-A INPUT -j ACCEPT
+-A INPUT -j ACCEPT
+-A INPUT -j logaccept-final-10
+-A INPUT -j ACCEPT
-A INPUT -i eth0 -j limit-116
-A INPUT -i eth0 -j limit-117
-A INPUT -i eth0 -j limit-118
-A INPUT -i eth0 -j limit-119
+-A INPUT -i eth0 -j limit-120
+-A INPUT -i eth0 -j limit-121
+-A INPUT -i eth0 -j limit-122
+-A INPUT -i eth0 -j limit-123
+-A INPUT -i eth0 -j limit-124
+-A INPUT -i eth0 -j limit-125
+-A INPUT -i eth0 -j limit-126
+-A INPUT -i eth0 -j limit-127
+-A INPUT -i eth0 -j limit-128
+-A INPUT -i eth0 -j limit-129
+-A INPUT -i eth0 -j limit-130
+-A INPUT -i eth0 -j limit-131
+-A INPUT -i eth0 -j limit-132
+-A INPUT -i eth0 -j limit-133
+-A INPUT -i eth0 -j limit-134
+-A INPUT -i eth0 -j limit-135
+-A INPUT -i eth0 -j limit-136
+-A INPUT -i eth0 -j limit-137
+-A INPUT -i eth0 -j limit-138
+-A INPUT -i eth0 -j limit-139
+-A INPUT -i eth0 -j limit-140
+-A INPUT -i eth0 -j limit-141
+-A INPUT -i eth0 -j limit-142
+-A INPUT -i eth0 -j limit-143
+-A INPUT -i eth0 -j limit-144
+-A INPUT -i eth0 -j limit-145
+-A INPUT -i eth0 -j limit-146
+-A INPUT -i eth0 -j limit-147
+-A INPUT -i eth0 -j limit-148
+-A INPUT -i eth0 -j limit-149
+-A INPUT -i eth0 -j limit-150
+-A INPUT -i eth0 -j limit-151
+-A INPUT -i eth0 -j limit-152
+-A INPUT -i eth0 -j limit-153
+-A INPUT -i eth0 -j limit-154
+-A INPUT -i eth0 -j limit-155
+-A INPUT -i eth0 -j limit-156
+-A INPUT -i eth0 -j limit-157
+-A INPUT -i eth0 -j limit-158
+-A INPUT -i eth0 -j limit-159
+-A INPUT -i eth0 -j limit-160
+-A INPUT -i eth0 -j limit-161
+-A INPUT -i eth0 -j limit-162
+-A INPUT -i eth0 -j limit-163
+-A INPUT -i eth0 -j limit-164
+-A INPUT -i eth0 -j limit-165
+-A INPUT -i eth0 -j limit-166
+-A INPUT -i eth0 -j limit-167
+-A INPUT -i eth0 -j limit-168
+-A INPUT -i eth0 -j limit-169
+-A INPUT -i eth0 -j limit-170
+-A INPUT -i eth0 -j limit-171
+-A INPUT -i eth0 -j limit-172
+-A INPUT -i eth0 -j limit-173
-A INPUT -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A INPUT -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A INPUT -j ACCEPT
--A INPUT -j logdrop-37
+-A INPUT -j logdrop-55
-A INPUT
-A INPUT -j ACCEPT
-A INPUT -j DROP
-A INPUT
-A INPUT -j logaccept-8
--A INPUT -j logdrop-38
+-A INPUT -j logdrop-56
-A INPUT -j logpass-0
-A INPUT -j ACCEPT
-A INPUT -j DROP
@@ -473,6 +638,42 @@
-A INPUT -p icmpv6 -j ACCEPT
-A OUTPUT -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A OUTPUT -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A OUTPUT -j limit-115
+-A OUTPUT -j limit-114
+-A OUTPUT -j limit-113
+-A OUTPUT -j limit-112
+-A OUTPUT -j limit-111
+-A OUTPUT -j limit-110
+-A OUTPUT -j limit-109
+-A OUTPUT -j limit-108
+-A OUTPUT -j limit-107
+-A OUTPUT -j limit-106
+-A OUTPUT -j limit-105
+-A OUTPUT -j limit-104
+-A OUTPUT -j limit-103
+-A OUTPUT -j limit-102
+-A OUTPUT -j limit-101
+-A OUTPUT -j limit-100
+-A OUTPUT -j limit-99
+-A OUTPUT -j limit-98
+-A OUTPUT -j limit-97
+-A OUTPUT -j limit-96
+-A OUTPUT -j limit-95
+-A OUTPUT -j limit-94
+-A OUTPUT -j limit-93
+-A OUTPUT -j limit-92
+-A OUTPUT -j limit-91
+-A OUTPUT -j limit-90
+-A OUTPUT -j limit-89
+-A OUTPUT -j limit-88
+-A OUTPUT -j limit-87
+-A OUTPUT -j limit-86
+-A OUTPUT -j limit-85
+-A OUTPUT -j limit-84
+-A OUTPUT -j limit-83
+-A OUTPUT -j limit-82
+-A OUTPUT -j limit-81
+-A OUTPUT -j limit-80
-A OUTPUT -j limit-79
-A OUTPUT -j limit-78
-A OUTPUT -j limit-77
@@ -495,24 +696,6 @@
-A OUTPUT -j limit-60
-A OUTPUT -j limit-59
-A OUTPUT -j limit-58
--A OUTPUT -j limit-57
--A OUTPUT -j limit-56
--A OUTPUT -j limit-55
--A OUTPUT -j limit-54
--A OUTPUT -j limit-53
--A OUTPUT -j limit-52
--A OUTPUT -j limit-51
--A OUTPUT -j limit-50
--A OUTPUT -j limit-49
--A OUTPUT -j limit-48
--A OUTPUT -j limit-47
--A OUTPUT -j limit-46
--A OUTPUT -j limit-45
--A OUTPUT -j limit-44
--A OUTPUT -j limit-43
--A OUTPUT -j limit-42
--A OUTPUT -j limit-41
--A OUTPUT -j limit-40
-A OUTPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -j ACCEPT
@@ -561,6 +744,24 @@
-A OUTPUT -o eth1 -d fc00::/7 -j limit-37
-A OUTPUT -o eth1 -d fc00::/7 -j limit-38
-A OUTPUT -o eth1 -d fc00::/7 -j limit-39
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-40
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-41
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-42
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-43
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-44
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-45
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-46
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-47
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-48
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-49
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-50
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-51
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-52
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-53
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-54
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-55
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-56
+-A OUTPUT -o eth1 -d fc00::/7 -j limit-57
-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-0
-A OUTPUT -j ACCEPT
@@ -585,6 +786,24 @@
-A OUTPUT -j ACCEPT
-A OUTPUT -j logaccept-final-7
-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logaccept-final-8
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logaccept-final-9
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j ACCEPT
+-A OUTPUT -j logaccept-final-10
+-A OUTPUT -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
+-A OUTPUT -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
@@ -612,13 +831,13 @@
-A OUTPUT -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A OUTPUT -m recent --name user:foo --rdest --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A OUTPUT -j ACCEPT
--A OUTPUT -j logdrop-37
+-A OUTPUT -j logdrop-55
-A OUTPUT
-A OUTPUT -j ACCEPT
-A OUTPUT -j DROP
-A OUTPUT
-A OUTPUT -j logaccept-8
--A OUTPUT -j logdrop-38
+-A OUTPUT -j logdrop-56
-A OUTPUT -j logpass-0
-A OUTPUT -j ACCEPT
-A OUTPUT -j DROP
@@ -639,70 +858,192 @@
-A limit-1 -m recent --name limit-1 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-10 -m recent --name limit-10 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-11
-A limit-10 -m recent --name limit-10 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-100 -m recent --name limit-100 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-100 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-100 -j RETURN
-A limit-100 -m limit --limit 1/second -j LOG
--A limit-100 -m recent --name limit-100 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-101 -m recent --name limit-101 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-101 -m recent --name limit-101 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-102 -m recent --name limit-102 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-102 -m recent --name limit-102 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-103 -m recent --name limit-103 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-103 -m recent --name limit-103 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-104 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-104 -j ACCEPT
+-A limit-100 -j DROP
+-A limit-101 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-101 -j RETURN
+-A limit-101 -m limit --limit 1/second -j LOG
+-A limit-101 -j DROP
+-A limit-102 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-102 -j RETURN
+-A limit-102 -m limit --limit 1/second -j LOG
+-A limit-102 -j DROP
+-A limit-103 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-103 -j RETURN
+-A limit-103 -m limit --limit 1/second -j LOG
+-A limit-103 -j DROP
+-A limit-104 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-104 -j RETURN
-A limit-104 -m limit --limit 1/second -j LOG
-A limit-104 -j DROP
-A limit-105 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-105 -j RETURN
-A limit-105 -m limit --limit 1/second -j LOG
-A limit-105 -j DROP
--A limit-106 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-106 -j logaccept-4
+-A limit-106 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-106 -j RETURN
-A limit-106 -m limit --limit 1/second -j LOG
-A limit-106 -j DROP
--A limit-107 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-107 -j ACCEPT
+-A limit-107 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-107 -j RETURN
-A limit-107 -m limit --limit 1/second -j LOG
-A limit-107 -j DROP
--A limit-108 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-108 -j ACCEPT
--A limit-108 -m limit --limit 1/second -j LOG
+-A limit-108 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-108 -j RETURN
-A limit-108 -j DROP
-A limit-109 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-109 -j RETURN
--A limit-109 -m limit --limit 1/second -j LOG
-A limit-109 -j DROP
-A limit-11 -m recent --name limit-11 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-12
-A limit-11 -m recent --name limit-11 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-110 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-110 -j logaccept-5
--A limit-110 -m limit --limit 1/second -j LOG
+-A limit-110 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-110 -j RETURN
-A limit-110 -j DROP
--A limit-111 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-111 -j ACCEPT
--A limit-111 -m limit --limit 1/second -j LOG
+-A limit-111 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-111 -j RETURN
-A limit-111 -j DROP
--A limit-112 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-112 -j ACCEPT
+-A limit-112 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-112 -j RETURN
-A limit-112 -j DROP
-A limit-113 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-113 -j RETURN
-A limit-113 -j DROP
--A limit-114 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-114 -j logaccept-6
+-A limit-114 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-114 -j RETURN
-A limit-114 -j DROP
--A limit-115 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-115 -j ACCEPT
+-A limit-115 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-115 -j RETURN
-A limit-115 -j DROP
--A limit-116 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-116 -j ACCEPT
--A limit-116 -j DROP
--A limit-117 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-117 -j RETURN
--A limit-117 -j DROP
--A limit-118 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-118 -j logaccept-7
--A limit-118 -j DROP
--A limit-119 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-119 -j ACCEPT
--A limit-119 -j DROP
--A limit-12 -m recent --name limit-12 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-12 -m recent --name limit-12 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-13 -m recent --name limit-13 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-13 -m recent --name limit-13 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-116 -m recent --name limit-116 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-37
+-A limit-116 -m recent --name limit-116 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-117 -m recent --name limit-117 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-38
+-A limit-117 -m recent --name limit-117 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-118 -m recent --name limit-118 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-39
+-A limit-118 -m limit --limit 1/second -j LOG
+-A limit-118 -m recent --name limit-118 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-119 -m recent --name limit-119 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-40
+-A limit-119 -m recent --name limit-119 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-12 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-13
+-A limit-12 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-120 -m recent --name limit-120 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-41
+-A limit-120 -m recent --name limit-120 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-121 -m recent --name limit-121 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-42
+-A limit-121 -m recent --name limit-121 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-122 -m recent --name limit-122 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-43
+-A limit-122 -m recent --name limit-122 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-123 -m recent --name limit-123 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-44
+-A limit-123 -m recent --name limit-123 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-124 -m recent --name limit-124 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-45
+-A limit-124 -m limit --limit 1/second -j LOG
+-A limit-124 -m recent --name limit-124 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-125 -m recent --name limit-125 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-46
+-A limit-125 -m recent --name limit-125 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-126 -m recent --name limit-126 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-47
+-A limit-126 -m recent --name limit-126 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-127 -m recent --name limit-127 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-48
+-A limit-127 -m recent --name limit-127 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-128 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-49
+-A limit-128 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-129 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-50
+-A limit-129 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-13 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-14
+-A limit-13 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-130 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-51
+-A limit-130 -m limit --limit 1/second -j LOG
+-A limit-130 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-131 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-52
+-A limit-131 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-132 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-53
+-A limit-132 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-133 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-54
+-A limit-133 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-134 -m recent --name limit-134 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-134 -m recent --name limit-134 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-135 -m recent --name limit-135 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-135 -m recent --name limit-135 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-136 -m recent --name limit-136 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-136 -m limit --limit 1/second -j LOG
+-A limit-136 -m recent --name limit-136 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-137 -m recent --name limit-137 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-137 -m recent --name limit-137 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-138 -m recent --name limit-138 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-138 -m recent --name limit-138 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-139 -m recent --name limit-139 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-139 -m recent --name limit-139 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-14 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-15
-A limit-14 -m limit --limit 1/second -j LOG
--A limit-14 -m recent --name limit-14 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-15 -m recent --name limit-15 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-16 -m recent --name limit-16 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-17 -m recent --name limit-17 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-14 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-140 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-140 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-141 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-141 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-142 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-142 -m limit --limit 1/second -j LOG
+-A limit-142 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-143 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-143 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-144 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-144 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-145 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-145 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-146 -m recent --name limit-146 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-146 -m recent --name limit-146 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-147 -m recent --name limit-147 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-147 -m recent --name limit-147 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-148 -m recent --name limit-148 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-148 -m limit --limit 1/second -j LOG
+-A limit-148 -m recent --name limit-148 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-149 -m recent --name limit-149 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-149 -m recent --name limit-149 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-15 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-16
+-A limit-15 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-150 -m recent --name limit-150 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-150 -m recent --name limit-150 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-151 -m recent --name limit-151 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-151 -m recent --name limit-151 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-152 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-152 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-153 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-153 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-154 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-154 -m limit --limit 1/second -j LOG
+-A limit-154 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-155 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-155 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-156 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-156 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-157 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-157 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-158 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-158 -j ACCEPT
+-A limit-158 -m limit --limit 1/second -j LOG
+-A limit-158 -j DROP
+-A limit-159 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-159 -j RETURN
+-A limit-159 -m limit --limit 1/second -j LOG
+-A limit-159 -j DROP
+-A limit-16 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-17
+-A limit-16 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-160 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-160 -j logaccept-4
+-A limit-160 -m limit --limit 1/second -j LOG
+-A limit-160 -j DROP
+-A limit-161 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-161 -j ACCEPT
+-A limit-161 -m limit --limit 1/second -j LOG
+-A limit-161 -j DROP
+-A limit-162 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-162 -j ACCEPT
+-A limit-162 -m limit --limit 1/second -j LOG
+-A limit-162 -j DROP
+-A limit-163 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-163 -j RETURN
+-A limit-163 -m limit --limit 1/second -j LOG
+-A limit-163 -j DROP
+-A limit-164 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-164 -j logaccept-5
+-A limit-164 -m limit --limit 1/second -j LOG
+-A limit-164 -j DROP
+-A limit-165 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-165 -j ACCEPT
+-A limit-165 -m limit --limit 1/second -j LOG
+-A limit-165 -j DROP
+-A limit-166 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-166 -j ACCEPT
+-A limit-166 -j DROP
+-A limit-167 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-167 -j RETURN
+-A limit-167 -j DROP
+-A limit-168 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-168 -j logaccept-6
+-A limit-168 -j DROP
+-A limit-169 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-169 -j ACCEPT
+-A limit-169 -j DROP
+-A limit-17 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-18
+-A limit-17 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-170 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-170 -j ACCEPT
+-A limit-170 -j DROP
+-A limit-171 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-171 -j RETURN
+-A limit-171 -j DROP
+-A limit-172 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-172 -j logaccept-7
+-A limit-172 -j DROP
+-A limit-173 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-173 -j ACCEPT
+-A limit-173 -j DROP
-A limit-18 -m recent --name limit-18 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-18 -m recent --name limit-18 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
-A limit-19 -m recent --name limit-19 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
@@ -719,192 +1060,184 @@
-A limit-22 -m recent --name limit-22 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
-A limit-23 -m recent --name limit-23 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-23 -m recent --name limit-23 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-24 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-24 -j ACCEPT
--A limit-24 -m limit --limit 1/second -j LOG
--A limit-24 -j DROP
--A limit-25 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-25 -j RETURN
--A limit-25 -m limit --limit 1/second -j LOG
--A limit-25 -j DROP
--A limit-26 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-26 -j logaccept-0
+-A limit-24 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-24 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-25 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-25 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-26 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-26 -m limit --limit 1/second -j LOG
--A limit-26 -j DROP
--A limit-27 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-27 -j ACCEPT
--A limit-27 -m limit --limit 1/second -j LOG
--A limit-27 -j DROP
--A limit-28 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-28 -j ACCEPT
--A limit-28 -m limit --limit 1/second -j LOG
--A limit-28 -j DROP
--A limit-29 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-29 -j RETURN
--A limit-29 -m limit --limit 1/second -j LOG
--A limit-29 -j DROP
+-A limit-26 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-27 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-27 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-28 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-28 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-29 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-29 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-3 -m recent --name limit-3 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-4
-A limit-3 -m recent --name limit-3 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-30 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-30 -j logaccept-1
--A limit-30 -m limit --limit 1/second -j LOG
--A limit-30 -j DROP
--A limit-31 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-31 -j ACCEPT
--A limit-31 -m limit --limit 1/second -j LOG
--A limit-31 -j DROP
--A limit-32 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-32 -j ACCEPT
--A limit-32 -j DROP
--A limit-33 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-33 -j RETURN
--A limit-33 -j DROP
--A limit-34 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-34 -j logaccept-2
--A limit-34 -j DROP
--A limit-35 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-35 -j ACCEPT
--A limit-35 -j DROP
--A limit-36 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-36 -j ACCEPT
--A limit-36 -j DROP
--A limit-37 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-37 -j RETURN
--A limit-37 -j DROP
--A limit-38 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-38 -j logaccept-3
--A limit-38 -j DROP
--A limit-39 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-39 -j ACCEPT
--A limit-39 -j DROP
+-A limit-30 -m recent --name limit-30 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-30 -m recent --name limit-30 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-31 -m recent --name limit-31 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-31 -m recent --name limit-31 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-32 -m recent --name limit-32 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-32 -m limit --limit 1/second -j LOG
+-A limit-32 -m recent --name limit-32 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-33 -m recent --name limit-33 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-33 -m recent --name limit-33 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-34 -m recent --name limit-34 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-34 -m recent --name limit-34 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-35 -m recent --name limit-35 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-35 -m recent --name limit-35 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-36 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-36 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-37 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-37 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-38 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-38 -m limit --limit 1/second -j LOG
+-A limit-38 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-39 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-39 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
-A limit-4 -m recent --name limit-4 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-5
-A limit-4 -m recent --name limit-4 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-40 -m recent --name limit-40 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-13
--A limit-40 -m recent --name limit-40 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-41 -m recent --name limit-41 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-14
--A limit-41 -m recent --name limit-41 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-42 -m recent --name limit-42 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-15
--A limit-42 -m recent --name limit-42 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-43 -m recent --name limit-43 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-16
--A limit-43 -m recent --name limit-43 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-44 -m recent --name limit-44 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-17
--A limit-44 -m recent --name limit-44 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-45 -m recent --name limit-45 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-18
--A limit-45 -m recent --name limit-45 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-46 -m recent --name limit-46 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-19
--A limit-46 -m recent --name limit-46 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-47 -m recent --name limit-47 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-20
--A limit-47 -m recent --name limit-47 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-48 -m recent --name limit-48 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-21
--A limit-48 -m recent --name limit-48 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-49 -m recent --name limit-49 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-22
--A limit-49 -m recent --name limit-49 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-40 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-40 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-41 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-41 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-42 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-42 -j ACCEPT
+-A limit-42 -m limit --limit 1/second -j LOG
+-A limit-42 -j DROP
+-A limit-43 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-43 -j RETURN
+-A limit-43 -m limit --limit 1/second -j LOG
+-A limit-43 -j DROP
+-A limit-44 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-44 -j logaccept-0
+-A limit-44 -m limit --limit 1/second -j LOG
+-A limit-44 -j DROP
+-A limit-45 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-45 -j ACCEPT
+-A limit-45 -m limit --limit 1/second -j LOG
+-A limit-45 -j DROP
+-A limit-46 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-46 -j ACCEPT
+-A limit-46 -m limit --limit 1/second -j LOG
+-A limit-46 -j DROP
+-A limit-47 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-47 -j RETURN
+-A limit-47 -m limit --limit 1/second -j LOG
+-A limit-47 -j DROP
+-A limit-48 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-48 -j logaccept-1
+-A limit-48 -m limit --limit 1/second -j LOG
+-A limit-48 -j DROP
+-A limit-49 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-49 -j ACCEPT
+-A limit-49 -m limit --limit 1/second -j LOG
+-A limit-49 -j DROP
-A limit-5 -m recent --name limit-5 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-6
-A limit-5 -m recent --name limit-5 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-50 -m recent --name limit-50 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-23
--A limit-50 -m recent --name limit-50 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-51 -m recent --name limit-51 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-24
--A limit-51 -m recent --name limit-51 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-52 -m recent --name limit-52 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-52 -m recent --name limit-52 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-53 -m recent --name limit-53 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-53 -m recent --name limit-53 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-54 -m recent --name limit-54 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-54 -m recent --name limit-54 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-55 -m recent --name limit-55 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-55 -m recent --name limit-55 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-56 -m recent --name limit-56 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-56 -m recent --name limit-56 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-57 -m recent --name limit-57 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-57 -m recent --name limit-57 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-58 -m recent --name limit-58 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-50 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-50 -j ACCEPT
+-A limit-50 -j DROP
+-A limit-51 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-51 -j RETURN
+-A limit-51 -j DROP
+-A limit-52 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-52 -j logaccept-2
+-A limit-52 -j DROP
+-A limit-53 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-53 -j ACCEPT
+-A limit-53 -j DROP
+-A limit-54 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-54 -j ACCEPT
+-A limit-54 -j DROP
+-A limit-55 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-55 -j RETURN
+-A limit-55 -j DROP
+-A limit-56 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-56 -j logaccept-3
+-A limit-56 -j DROP
+-A limit-57 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-57 -j ACCEPT
+-A limit-57 -j DROP
+-A limit-58 -m recent --name limit-58 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-19
-A limit-58 -m recent --name limit-58 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-59 -m recent --name limit-59 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-59 -m recent --name limit-59 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-20
-A limit-59 -m recent --name limit-59 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-6 -m recent --name limit-6 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-7
-A limit-6 -m recent --name limit-6 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-60 -m recent --name limit-60 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-60 -m recent --name limit-60 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-21
-A limit-60 -m recent --name limit-60 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-61 -m recent --name limit-61 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-61 -m recent --name limit-61 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-22
-A limit-61 -m recent --name limit-61 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-62 -m recent --name limit-62 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-62 -m recent --name limit-62 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-23
-A limit-62 -m recent --name limit-62 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-63 -m recent --name limit-63 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-63 -m recent --name limit-63 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-24
-A limit-63 -m recent --name limit-63 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-64 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-64 -j RETURN
--A limit-64 -m limit --limit 1/second -j LOG
--A limit-64 -j DROP
--A limit-65 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-65 -j RETURN
--A limit-65 -m limit --limit 1/second -j LOG
--A limit-65 -j DROP
--A limit-66 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-66 -j RETURN
--A limit-66 -m limit --limit 1/second -j LOG
--A limit-66 -j DROP
--A limit-67 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-67 -j RETURN
--A limit-67 -m limit --limit 1/second -j LOG
--A limit-67 -j DROP
--A limit-68 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-68 -j RETURN
--A limit-68 -m limit --limit 1/second -j LOG
--A limit-68 -j DROP
--A limit-69 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-69 -j RETURN
--A limit-69 -m limit --limit 1/second -j LOG
--A limit-69 -j DROP
+-A limit-64 -m recent --name limit-64 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-25
+-A limit-64 -m recent --name limit-64 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-65 -m recent --name limit-65 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-26
+-A limit-65 -m recent --name limit-65 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-66 -m recent --name limit-66 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-27
+-A limit-66 -m recent --name limit-66 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-67 -m recent --name limit-67 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-28
+-A limit-67 -m recent --name limit-67 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-68 -m recent --name limit-68 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-29
+-A limit-68 -m recent --name limit-68 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-69 -m recent --name limit-69 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-30
+-A limit-69 -m recent --name limit-69 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-7 -m recent --name limit-7 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-8
-A limit-7 -m recent --name limit-7 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-70 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-70 -j RETURN
--A limit-70 -m limit --limit 1/second -j LOG
--A limit-70 -j DROP
--A limit-71 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-71 -j RETURN
--A limit-71 -m limit --limit 1/second -j LOG
--A limit-71 -j DROP
--A limit-72 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-72 -j RETURN
--A limit-72 -j DROP
--A limit-73 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-73 -j RETURN
--A limit-73 -j DROP
--A limit-74 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-74 -j RETURN
--A limit-74 -j DROP
--A limit-75 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-75 -j RETURN
--A limit-75 -j DROP
--A limit-76 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-76 -j RETURN
--A limit-76 -j DROP
--A limit-77 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-77 -j RETURN
--A limit-77 -j DROP
--A limit-78 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-78 -j RETURN
--A limit-78 -j DROP
--A limit-79 -m hashlimit --hashlimit-upto 30/second --hashlimit-burst 30 --hashlimit-mode srcip --hashlimit-srcmask 128 --hashlimit-name limit-79 -j RETURN
--A limit-79 -j DROP
+-A limit-70 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-31
+-A limit-70 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-71 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-32
+-A limit-71 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-72 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-33
+-A limit-72 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-73 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-34
+-A limit-73 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-74 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-35
+-A limit-74 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-75 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-36
+-A limit-75 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-76 -m recent --name limit-76 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-76 -m recent --name limit-76 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-77 -m recent --name limit-77 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-77 -m recent --name limit-77 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-78 -m recent --name limit-78 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-78 -m recent --name limit-78 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-79 -m recent --name limit-79 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-79 -m recent --name limit-79 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
-A limit-8 -m recent --name limit-8 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-9
-A limit-8 -m limit --limit 1/second -j LOG
-A limit-8 -m recent --name limit-8 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-80 -m recent --name limit-80 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-25
--A limit-80 -m recent --name limit-80 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-81 -m recent --name limit-81 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-26
+-A limit-80 -m recent --name limit-80 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-80 -m recent --name limit-80 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-81 -m recent --name limit-81 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-81 -m recent --name limit-81 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-82 -m recent --name limit-82 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-27
--A limit-82 -m limit --limit 1/second -j LOG
--A limit-82 -m recent --name limit-82 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-83 -m recent --name limit-83 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-28
--A limit-83 -m recent --name limit-83 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-84 -m recent --name limit-84 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-29
--A limit-84 -m recent --name limit-84 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-85 -m recent --name limit-85 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-30
--A limit-85 -m recent --name limit-85 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-86 -m recent --name limit-86 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-31
--A limit-86 -m recent --name limit-86 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-87 -m recent --name limit-87 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-32
--A limit-87 -m recent --name limit-87 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-88 -m recent --name limit-88 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-33
--A limit-88 -m limit --limit 1/second -j LOG
--A limit-88 -m recent --name limit-88 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-89 -m recent --name limit-89 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-34
--A limit-89 -m recent --name limit-89 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-82 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-82 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-83 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-83 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-84 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-84 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-85 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-85 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-86 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-86 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-87 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-87 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-88 -m recent --name limit-88 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-88 -m recent --name limit-88 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-89 -m recent --name limit-89 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-89 -m recent --name limit-89 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-9 -m recent --name limit-9 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-10
-A limit-9 -m recent --name limit-9 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-90 -m recent --name limit-90 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-35
--A limit-90 -m recent --name limit-90 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-91 -m recent --name limit-91 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j logdrop-36
--A limit-91 -m recent --name limit-91 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-90 -m recent --name limit-90 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-90 -m recent --name limit-90 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-91 -m recent --name limit-91 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-91 -m recent --name limit-91 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
-A limit-92 -m recent --name limit-92 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-92 -m recent --name limit-92 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
+-A limit-92 -m recent --name limit-92 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A limit-93 -m recent --name limit-93 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
-A limit-93 -m recent --name limit-93 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-94 -m recent --name limit-94 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-94 -m limit --limit 1/second -j LOG
--A limit-94 -m recent --name limit-94 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-95 -m recent --name limit-95 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-95 -m recent --name limit-95 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
--A limit-96 -m recent --name limit-96 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-96 -m recent --name limit-96 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-97 -m recent --name limit-97 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-97 -m recent --name limit-97 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
--A limit-98 -m recent --name limit-98 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-98 -m recent --name limit-98 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -j ACCEPT
--A limit-99 -m recent --name limit-99 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
--A limit-99 -m recent --name limit-99 --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-94 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-94 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-95 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-95 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-96 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-96 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-97 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-97 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set -m limit --limit 1/second -j LOG
+-A limit-98 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-98 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
+-A limit-99 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --update --hitcount 1 --seconds 1 -j DROP
+-A limit-99 -m recent --name user:foo --rsource --mask ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff --set
-A logaccept-0 -m limit --limit 1/second -j LOG
-A logaccept-0 -j ACCEPT
-A logaccept-1 -m limit --limit 1/second -j LOG
@@ -927,6 +1260,8 @@
-A logaccept-final-0 -j ACCEPT
-A logaccept-final-1 -m limit --limit 1/second -j LOG
-A logaccept-final-1 -j ACCEPT
+-A logaccept-final-10 -m limit --limit 1/second -j LOG
+-A logaccept-final-10 -j ACCEPT
-A logaccept-final-2 -m limit --limit 1/second -j LOG
-A logaccept-final-2 -j ACCEPT
-A logaccept-final-3 -m limit --limit 1/second -j LOG
@@ -939,6 +1274,10 @@
-A logaccept-final-6 -j ACCEPT
-A logaccept-final-7 -m limit --limit 1/second -j LOG
-A logaccept-final-7 -j ACCEPT
+-A logaccept-final-8 -m limit --limit 1/second -j LOG
+-A logaccept-final-8 -j ACCEPT
+-A logaccept-final-9 -m limit --limit 1/second -j LOG
+-A logaccept-final-9 -j ACCEPT
-A logdrop-0 -m limit --limit 1/second -j LOG
-A logdrop-0 -j DROP
-A logdrop-1 -m limit --limit 1/second -j LOG
@@ -1005,10 +1344,46 @@
-A logdrop-37 -j DROP
-A logdrop-38 -m limit --limit 1/second -j LOG
-A logdrop-38 -j DROP
+-A logdrop-39 -m limit --limit 1/second -j LOG
+-A logdrop-39 -j DROP
-A logdrop-4 -m limit --limit 1/second -j LOG
-A logdrop-4 -j DROP
+-A logdrop-40 -m limit --limit 1/second -j LOG
+-A logdrop-40 -j DROP
+-A logdrop-41 -m limit --limit 1/second -j LOG
+-A logdrop-41 -j DROP
+-A logdrop-42 -m limit --limit 1/second -j LOG
+-A logdrop-42 -j DROP
+-A logdrop-43 -m limit --limit 1/second -j LOG
+-A logdrop-43 -j DROP
+-A logdrop-44 -m limit --limit 1/second -j LOG
+-A logdrop-44 -j DROP
+-A logdrop-45 -m limit --limit 1/second -j LOG
+-A logdrop-45 -j DROP
+-A logdrop-46 -m limit --limit 1/second -j LOG
+-A logdrop-46 -j DROP
+-A logdrop-47 -m limit --limit 1/second -j LOG
+-A logdrop-47 -j DROP
+-A logdrop-48 -m limit --limit 1/second -j LOG
+-A logdrop-48 -j DROP
+-A logdrop-49 -m limit --limit 1/second -j LOG
+-A logdrop-49 -j DROP
-A logdrop-5 -m limit --limit 1/second -j LOG
-A logdrop-5 -j DROP
+-A logdrop-50 -m limit --limit 1/second -j LOG
+-A logdrop-50 -j DROP
+-A logdrop-51 -m limit --limit 1/second -j LOG
+-A logdrop-51 -j DROP
+-A logdrop-52 -m limit --limit 1/second -j LOG
+-A logdrop-52 -j DROP
+-A logdrop-53 -m limit --limit 1/second -j LOG
+-A logdrop-53 -j DROP
+-A logdrop-54 -m limit --limit 1/second -j LOG
+-A logdrop-54 -j DROP
+-A logdrop-55 -m limit --limit 1/second -j LOG
+-A logdrop-55 -j DROP
+-A logdrop-56 -m limit --limit 1/second -j LOG
+-A logdrop-56 -j DROP
-A logdrop-6 -m limit --limit 1/second -j LOG
-A logdrop-6 -j DROP
-A logdrop-7 -m limit --limit 1/second -j LOG
@@ -1063,6 +1438,15 @@ COMMIT
-A OUTPUT -o eth0 -j CT --notrack
-A OUTPUT -o eth0 -j CT --notrack
-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
+-A OUTPUT -o eth0 -j CT --notrack
-A OUTPUT -p tcp --dport 80 -j CT --notrack
-A OUTPUT -p esp -j CT --notrack
-A OUTPUT -p udp -m multiport --sports 500,4500 -j CT --notrack
@@ -1108,6 +1492,24 @@ COMMIT
-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
+-A PREROUTING -m addrtype --dst-type LOCAL -i eth0 -j CT --notrack
-A PREROUTING -m addrtype --dst-type LOCAL -p tcp --sport 80 -j CT --notrack
-A PREROUTING -m addrtype --dst-type LOCAL -p esp -j CT --notrack
-A PREROUTING -m addrtype --dst-type LOCAL -p udp -m multiport --dports 500,4500 -j CT --notrack
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-12 22:42:18 +0000