1This module matches at a limited rate using a token bucket filter. 2A rule using this extension will match until this limit is reached. 3It can be used in combination with the 4.B LOG 5target to give limited logging, for example. 6.PP 7xt_limit has no negation support - you will have to use \-m hashlimit ! 8\-\-hashlimit \fIrate\fP in this case whilst omitting \-\-hashlimit\-mode. 9.TP 10\fB\-\-limit\fP \fIrate\fP[\fB/second\fP|\fB/minute\fP|\fB/hour\fP|\fB/day\fP] 11Maximum average matching rate: specified as a number, with an optional 12`/second', `/minute', `/hour', or `/day' suffix; the default is 133/hour. 14.TP 15\fB\-\-limit\-burst\fP \fInumber\fP 16Maximum initial number of packets to match: this number gets 17recharged by one every time the limit specified above is not reached, 18up to this number; the default is 5. 19