LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page how to change values of parameters for iptables "recent" match ?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 12-08-2010, 06:25 PM   #1
anctop
Member
 
Registered: Feb 2010
Posts: 98

Rep: Reputation: Disabled
how to change values of parameters for iptables "recent" match ?

According to the man page, the "recent" match of iptables accepts certain parameters (e.g. "ip_list_tot"). I'd like to change the values of some of them.
All the solutions found on the web were about changing parameters for module, but my kernel was compiled without modules support (such that it can be used for installation booting as well).
How can I change the match parameters for my non-modular kernel ?
 
Old 12-25-2010, 11:44 PM   #2
andrewthomas
Senior Member
 
Registered: May 2010
Location: Chicago Metro
Distribution: Arch, Gentoo, Slackware
Posts: 1,690

Rep: Reputation: 312Reputation: 312Reputation: 312Reputation: 312
It would help if you would specify what exactly you are trying to accomplish.

Here is a limit match line from my iptables.rules
Code:
-A INPUT -m limit --limit 5/min --limit-burst 10 -j LOG
If you have support build into the kernel, you don't have to worry about loading modules. You should be good to go.
 
Old 12-27-2010, 10:42 PM   #3
anctop
Member
 
Registered: Feb 2010
Posts: 98

Original Poster
Rep: Reputation: Disabled
My rules are working well.
I just want to change the way of logging in /proc/net/xt_recent/* by changing some of the parameters (e.g. "ip_list_tot" and "ip_pkt_list_tot"), but it seems that they can be changed only for kernels with modules support.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] iptables recent match . What am I doing wrong ? bhaslinux Linux - Networking 9 09-17-2009 11:01 AM
A single regex to match anything with ".aac" or ".mp3" at the end ? lumix Linux - General 9 05-09-2008 01:11 AM
kernel update and "iptables: No chain/target/match by that name" thewtex Linux - Networking 4 04-03-2007 06:10 AM
"iptables: No chain/target/match by that name" error PennyroyalFrog Linux - Security 2 11-28-2004 01:57 PM
iptables "match" questions yocompia Linux - Security 3 08-21-2003 11:29 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:49 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration