On 2008-10-20 Ansgar Wiechers wrote: > On 2008-10-20 Nick Y Kuzminyh wrote: > > 3) Output of "zgrep CONNLIMIT /proc/config.gz" command: > > CONFIG_NETFILTER_XT_MATCH_CONNLIMIT=m" > > > > 4) iptables command: > > frya:/home/nick# iptables -t filter -A INPUT -p tcp --syn --dport > > 23 -m connlimit --connlimit-above 2 -j REJECT > > iptables error message: > > iptables: Invalid argument > > Maybe this is a stupid question, but is the module actually loaded? > > lsmod | grep conntrack
*hmph* "lsmod | grep connlimit", obviously. Sorry about that. I really shouldn't reply before having had enough coffee. :/ Regards Ansgar Wiechers -- "The Mac OS X kernel should never panic because, when it does, it seriously inconveniences the user." --http://developer.apple.com/technotes/tn2004/tn2118.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
