zydronium/internetee-registry
1
0
Fork 0
mirror of https://github.com/internetee/registry.git synced 2025-07-03 09:43:36 +02:00
Code Issues Projects Releases Packages Wiki Activity

Updated debian doc about rate limit #2348

Browse source
This commit is contained in:
Priit Tark 2015-06-01 13:43:06 +03:00
parent fc4fd92467
commit ae561606d9
1 changed files with 9 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

10
doc/debian_build_doc.md
View file

@ -86,7 +86,7 @@ $IPT -A INPUT -p tcp --dport 43 -i eth0 -m state --state NEW -m recent --rcheck
#### EPP #### EPP
We need to update iptables hitcounter from application. Iptables hitcounter is updated by application.
```` ````
#!/bin/bash #!/bin/bash
@ -103,3 +103,11 @@ DACTION="REJECT"
$IPT -A INPUT -p tcp --dport 700 -i eth0 -m state --state NEW -m recent --set $IPT -A INPUT -p tcp --dport 700 -i eth0 -m state --state NEW -m recent --set
$IPT -A INPUT -p tcp --dport 700 -m recent --name $REGISTRAR_CODE --rdest --rcheck --hitcount ${BLOCKCOUNT} --seconds ${SECONDS} -j ${DACTION} $IPT -A INPUT -p tcp --dport 700 -m recent --name $REGISTRAR_CODE --rdest --rcheck --hitcount ${BLOCKCOUNT} --seconds ${SECONDS} -j ${DACTION}
```` ````
After adding iptable counters, please add correct permissions to proc files at path /proc/net/xt_recent
Example command:
````
sudo chown registry /proc/net/xt_recent/*
````