#!/bin/sh
#
# IPTables connection rate limit
#

# This limits per port
/sbin/iptables -A INPUT -m tcp -p tcp --dport 22 -m state --state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A INPUT -m tcp -p tcp -s 10.1.0.0/24 --dport 22 -j ACCEPT
/sbin/iptables -A INPUT -m tcp -p tcp --dport 22 -m state --state NEW -m limit --limit 3/min --limit-burst 3 -j ACCEPT
/sbin/iptables -A INPUT -m tcp -p tcp --dport 22 -j DROP