On Tue, 2 Jul 2024, Jeff Peng wrote:
Hello gurus,
Is there a tool for maintaining the timeout for iptables rules?
for example, one IP would be blocked by my iptables for 24 hours, and another
IP should be blocked for one week.
Off the top of my head I can't think exactly how to do it but I think
you can use -m hashlimit and use the --hastlimit-htable-expire to time
things out.
But this will depend on exactly what you're doing. If you're adding
something to the hashtable that keeps happening then it might not
expire the way you want.
