Hi: I have a few questions about limiting ssh connections. I have the following ssh rules in /etc/shorewall/rules: # Forward ssh to local machine SSH(DNAT) net loc:192.168.1.2 # Allow ssh to FW from internet DNAT net fw:192.168.1.1:22 tcp 2222 Both sshd instances is configured to only allow key based authentication. But I also want to set a connection limit. In the shorewall-rules man page I found (example 3 - modified to my setup): DNAT net fw:192.168.1.1:22 tcp 2222 - - 3/min:10 I have not yet tested if the above will work though. In the above example I will allow 3 connections per min with a burst of 10. What does burst actually mean? Can I also log the packets that are dropped after exceeding the limit? Thanks! -Øyvind ------------------------------------------------------------------------------ CenturyLink Cloud: The Leader in Enterprise Cloud Services. Learn Why More Businesses Are Choosing CenturyLink Cloud For Critical Workloads, Development Environments & Everything In Between. Get a Quote or Start a Free Trial Today. http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk