Reply To: limiting number of connections per IP

Home Page Forums Network Management Networking limiting number of connections per IP Reply To: limiting number of connections per IP

#47093

smartcall
Member

Thanks for your reply!

These are the rules:

1 	* 	* 	MARK tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:25 MARK set 0xd 	BULK
2 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 LAYER7 l7proto sip MARK set 0xb VOIP
3 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 LAYER7 l7proto h323 MARK set 0xb VOIP
4 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 LAYER7 l7proto rtp MARK set 0xb VOIP
5 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 LAYER7 l7proto rtsp MARK set 0xb VOIP
6 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 LAYER7 l7proto ftp MARK set 0xd BULK
7 * * MARK tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:22 MARK set 0xc SHELL
8 * * MARK tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:22 MARK set 0xc SHELL
9 * * MARK tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 MARK set 0xd BULK
10 * * MARK udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:5060 MARK set 0xb VOIP
11 * * MARK udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpts:10000:20000 MARK set 0xb VOIP
12 * * MARK all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 ipp2p v0.8.2-pomng --kazaa --gnu --edk --dc --bit MARK set 0xf

Now there is a similar rule to port 80 in the above, but when I change it to have the limit, I can’t see it in the rule.
I also tried to add similar rule to the firewall to destination port 80 from ETH00 with limit of 10 per second and burst of 5.

Both with no effect.