thr3ads.net - netfilter buglog - [Bug 500] New: hashlimit behavior matches one more packet then limit [Aug 2006]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon@bugzilla.netfilter.org

2006-Aug-07 22:02 UTC

[Bug 500] New: hashlimit behavior matches one more packet then limit

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=500

           Summary: hashlimit behavior matches one more packet then limit
           Product: netfilter/iptables
           Version: linux-2.6.x
          Platform: i386
        OS/Version: Debian GNU/Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ip_tables (kernel)
        AssignedTo: laforge@netfilter.org
        ReportedBy: ryan.castellucci@gmail.com


With a hashlimit match specifying --hashlimit 1/min and --hashlimit-burst 1,
initialy 2 packets will be matched.  This is inconsistant with the limit match,
which given --limit 1/min and --limit-burst 1 will only match one packet
initaly.

Seen in 2.6.17.6 with ipt 1.3.3, also observed in other versions.

-- 
Configure bugmail:
https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

netfilter buglog - Aug 2006 - [Bug 500] New: hashlimit behavior matches one more packet then limit

[Bug 500] New: hashlimit behavior matches one more packet then limit