From 88784dc6a0e3e498e026cdd296ac706dd7e62cc7 Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Tue, 6 Dec 2005 19:11:58 +0000
Subject: [PATCH] Correct Code

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3122 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall-docs2/PortKnocking.xml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/Shorewall-docs2/PortKnocking.xml b/Shorewall-docs2/PortKnocking.xml
index 1db5f3647..53d2d6e7c 100644
--- a/Shorewall-docs2/PortKnocking.xml
+++ b/Shorewall-docs2/PortKnocking.xml
@@ -147,9 +147,10 @@ SSHKnock         net               loc:192.168.1.5 tcp         22            -
 
         <programlisting>run_iptables -A $CHAIN -m recent --name SSHA --set
 if [ -n "$LEVEL" ]; then
-    log_rule_limit $LEVEL $CHAIN SSHLimit REJECT "" "$TAG" -A -m recent --name SSHA --seconds 60 --hitcount 3
+    log_rule_limit $LEVEL $CHAIN SSHLimit REJECT "" "$TAG" -A -m recent --name SSHA --update --seconds 60 --hitcount 4
 fi
-run_iptables -A $CHAIN -m recent --name SSHA --seconds 60 --hitcount 3 -j reject</programlisting>
+run_iptables -A $CHAIN -m recent --update --name SSHA --seconds 60 --hitcount 4 -j reject
+run_iptables -A $CHAIN -j ACCEPT</programlisting>
       </listitem>
 
       <listitem>