diff --git a/exercises/h5.md b/exercises/h5.md
index 73d4f07..5cc4030 100644
--- a/exercises/h5.md
+++ b/exercises/h5.md
@@ -186,9 +186,9 @@ These rules do the following:
 
 1) Do not respond to ping echoes by clients (possibly reduce spambots)
 
-2) Drop all incoming connections, apply only SSH, HTTP and HTTPS
+2) Reject connection if too intense attempts. Useful against port scanners such as [Nmap](nmap.org) and other brute force scanners such as [Dirbuster](https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project).
 
-3) Drop packets if the client connection is too intense. May be useful against port scanners such as [Nmap](nmap.org).
+3) Drop all incoming connections, apply only SSH, HTTP and HTTPS
 
 The ruleset file has basic installation steps in the header section.