I created a transparent bridge in my LAN (172.24/16 private ip)

I want to use netfilter to control which ip address can go via the bridge and limit tcp connections and udp data rate.

the 1st goal is achieved by netfilter & netlink.

how do a limit tcp and udp.

is there any algorithm or examples about nf programming?

thx.