[NETFILTER]: x_tables: add port of hashlimit match for IPv4 and IPv6 Signed-off-by: Patrick McHardy <kaber@trash.net>

commit: 39b46fc6f0d1161a5585cd8af7b3a05e8118ab7e [log] [tgz]
author: Patrick McHardy <kaber@trash.net> Wed Nov 29 02:35:36 2006 +0100
committer: David S. Miller <davem@sunset.davemloft.net> Sat Dec 02 21:31:31 2006 -0800
tree: 708126eec291a8f7105751c656fb50a6091ec97e
parent: d7a5c32442ed3d528b9ddfd3d5b837bad0ffa9da [diff] [blame]
diff --git a/net/netfilter/Kconfig b/net/netfilter/Kconfig
index f619c65..7e61254 100644
--- a/net/netfilter/Kconfig
+++ b/net/netfilter/Kconfig

@@ -464,5 +464,19 @@
 
 	  To compile it as a module, choose M here.  If unsure, say N.
 
+config NETFILTER_XT_MATCH_HASHLIMIT
+	tristate '"hashlimit" match support'
+	depends on NETFILTER_XTABLES
+	help
+	  This option adds a `hashlimit' match.
+
+	  As opposed to `limit', this match dynamically creates a hash table
+	  of limit buckets, based on your selection of source/destination
+	  addresses and/or ports.
+
+	  It enables you to express policies like `10kpps for any given
+	  destination address' or `500pps from any given source address'
+	  with a single rule.
+
 endmenu
commit	39b46fc6f0d1161a5585cd8af7b3a05e8118ab7e	[log] [tgz]
author	Patrick McHardy <kaber@trash.net>	Wed Nov 29 02:35:36 2006 +0100
committer	David S. Miller <davem@sunset.davemloft.net>	Sat Dec 02 21:31:31 2006 -0800
tree	708126eec291a8f7105751c656fb50a6091ec97e
parent	d7a5c32442ed3d528b9ddfd3d5b837bad0ffa9da [diff] [blame]