advanced rules in Firewall cluster

[pppplus2]

Hi

Is it possible to add advanced rules in cluster Firewall, like this :

[RULES]
IN SSH -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --set
IN SSH -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent  --update --seconds 60 --hitcount 4 -j DROP

How to write them ?
(because mine doesn't work)

I try to search on ggl, but find nothing for advanced rules.

Thanks for your help.

 

[dietmar]

no, that is not implemented.

 

[pppplus2]

Ok, thanks for quick reply.

Previously, I used CSF firewall, but I have problem, because the cluster send me a lot of alerts when CT are running.
On Proxmox 3, no problem with CSF on the cluster.
But on Proxmox 5... I've this problem, so I try with Proxmox Firewall, but without advanced rules, it's very limited...

So, if you know how to configure CSF firewall (on cluster) to not have alerts when CT are running... it's perfect.
If not, do you know another simple firewall, to avoid to use iptables directly ?

Or a good list of iptables rules, for cluster ?

(I run CSF on each CT)