25 Aug
2003
25 Aug
'03
19:21
Hi,
keith@topaz5.worldonline.co.uk wrote:
When the counter for a particular IP address reaches a certain amount of open pending new connections that are not fulfilled in a certain time limit, then ALL the pending new
you may want to start with this:
http://dominia.org/djao/limitipconn.html
peace, Tom
More simple: This is a rule for input chain of your server's firewall. Analog to synflodd protection insert this in your firewallscript before you allow conncetion to port 80: # Set your number of max. connections here! CONNECTION_LIMIT="100" iptables -A INPUT -p tcp --dport 80 --syn -m limit --limit $CONNECTION_LIMIT/h \ -j LOG --log-prefix 'limit of $CONNECTION_LIMIT connections reaced' Reguards Philippe