I found the same recent module limitation on my dd-wrt router with kernel 2.4.37. I can't set a hitcount higher than 20!
This means that if I want to consider a larger window of time, like 60 seconds, many legitimate forms of communication would trip the recent module. Hence, for DoS attacks, I have to consider a tiny 4 second window or less. Perhaps this is not the right place to discuss this, and if not, what is? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/580169 Title: can no longer use iptables recent module multiple times after upgrade to lucid -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
