Problem with "accept with limit" (Ubuntu 14.04)

[BernhardGruen]

It seems that "accept with limit" does not work correctly because the generated name is too long.

Configuration (FireHOL 2.0.0rc2):

version 6
interface eth0 EXT
  server ssh accept with limit 10/sec 20
  client all accept

And this is the error output (only the first of 8 errors):

ERROR   : # 1.
WHAT    : A runtime command failed to execute (returned error 2).
SOURCE  : line 8 of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -N ACCEPT_LIMIT_10_sec_20_REJECT 
OUTPUT  : 

iptables v1.4.21: chain name `ACCEPT_LIMIT_10_sec_20_REJECT' too long (must be under 29 chars)
Try `iptables -h' or 'iptables --help' for more information.

If you need further input please just ask.

[philwhineray]

Thanks Bernhard

I have committed a fix, 6dd351f which will shorten the chain name used in these situations.

If you are able to try the current build, I would be most grateful.

[philwhineray]

Based on #40 being resolved and my own testing I am now closing this.

The fix is in 2.0.0-rc.3 on. If you still have problems with chain lengths, feel free to re-open.

[BernhardGruen]

Hi,

sorry for the late response.

I've just tested it on my system. It works perfectly now.

Thank you

Bernhard
Am 19.10.2014 10:06 schrieb "philwhineray" notifications@github.com:

Based on #40 https://github.com/ktsaou/firehol/issues/40 being resolved
and my own testing I am now closing this.

The fix is in 2.0.0-rc.3 on. If you still have problems with chain
lengths, feel free to re-open.

—
Reply to this email directly or view it on GitHub
https://github.com/ktsaou/firehol/issues/38#issuecomment-59642679.