holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Synflood chain handling

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@6152 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2007-04-30 00:38:51 +00:00
parent a6358bf7e4
commit 381212c78d
1 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
Shorewall-shell/compiler
View File

@ -765,11 +765,13 @@ setup_syn_flood_chain ()
;; ;;
esac esac
run_iptables -N $chain if ! havechain $chain ; then
run_iptables -A $chain -m limit --limit $limit $limit_burst -j RETURN run_iptables -N $chain
[ -n "$3" ] && \ run_iptables -A $chain -m limit --limit $limit $limit_burst -j RETURN
log_rule_limit $3 $chain $chain DROP "-m limit --limit 5/min --limit-burst 5" "" "" [ -n "$3" ] && \
run_iptables -A $chain -j DROP log_rule_limit $3 $chain $chain DROP "-m limit --limit 5/min --limit-burst 5" "" ""
run_iptables -A $chain -j DROP
fi
} }
setup_syn_flood_chains() setup_syn_flood_chains()