jt2048
1
Goal, limit UDP DNS flood and dst attacks. Not getting any action on byte counter, where is my mistake?
0 ;;; default configuration
chain=input action=accept protocol=icmp
1 chain=input action=accept protocol=udp dst-port=53 limit=2400/1m,2400 <— Being ignored???
2 ;;; default configuration
chain=input action=accept connection-state=established
3 ;;; default configuration
chain=input action=accept connection-state=related
4 X ;;; default configuration
chain=input action=drop in-interface=sfp1-gateway
TIA! … JT
jt2048
2
Hardware is a 2011UAS, OS is v5.21. This has got to be a stupid error on my part but where to start looking?