diff options
author | Ryan Thomas McBride <mcbride@cvs.openbsd.org> | 2004-12-18 00:23:32 +0000 |
---|---|---|
committer | Ryan Thomas McBride <mcbride@cvs.openbsd.org> | 2004-12-18 00:23:32 +0000 |
commit | 99d7dcfaebd2ecebe66f06f9beba9b6591b31d8a (patch) | |
tree | 5cbb6818d6e3a0c05dac508aa315c68beae34c4d | |
parent | ce98f823f97f385ba1b87690e75d9490485a2817 (diff) |
Better wording.
-rw-r--r-- | share/man/man5/pf.conf.5 | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/share/man/man5/pf.conf.5 b/share/man/man5/pf.conf.5 index ee57daa1cef..3d2e219c62f 100644 --- a/share/man/man5/pf.conf.5 +++ b/share/man/man5/pf.conf.5 @@ -1,4 +1,4 @@ -.\" $OpenBSD: pf.conf.5,v 1.315 2004/12/17 11:31:18 henning Exp $ +.\" $OpenBSD: pf.conf.5,v 1.316 2004/12/18 00:23:31 mcbride Exp $ .\" .\" Copyright (c) 2002, Daniel Hartmeier .\" All rights reserved. @@ -1955,7 +1955,7 @@ per source IP. Limits the maximum number of simultaneous TCP connections which have completed the 3-way handshake that a single host can make. .It Ar max-src-conn-rate <number> / <seconds> -Limit the number of new connections over a time interval. +Limit the rate of new connections over a time interval. The connection rate is an approximation calculated as a moving average. .El .Pp @@ -1966,8 +1966,8 @@ With the state option, source IP addresses which hit either of the limits on established connections will be added to the named table. This table can be used in the ruleset to block further activity from -the offending host, redirect it to a tarpit process, or restrict that -host's bandwidth. +the offending host, redirect it to a tarpit process, or restrict its +bandwidth. .Pp The optional .Ar flush |