Dictionary blocking with iptables

I've been looking for a working example of dictoinary attack block using iptables. This link has a working example and gave the reason why his example is different from the others you'll find online. The working example is:

# iptables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --update --seconds 60 --hitcount 4 -j DROP
# iptables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --set

I've verified this with my personal RHEL4 installation.