On 2008-10-20 Nick Y Kuzminyh wrote: > 3) Output of "zgrep CONNLIMIT /proc/config.gz" command: > CONFIG_NETFILTER_XT_MATCH_CONNLIMIT=m" > > 4) iptables command: > frya:/home/nick# iptables -t filter -A INPUT -p tcp --syn --dport 23 > -m connlimit --connlimit-above 2 -j REJECT > iptables error message: > iptables: Invalid argument
Maybe this is a stupid question, but is the module actually loaded? lsmod | grep conntrack Regards Ansgar Wiechers -- "The Mac OS X kernel should never panic because, when it does, it seriously inconveniences the user." --http://developer.apple.com/technotes/tn2004/tn2118.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
