limiting outgoing connections
Jason Opperisano
opie at 817west.com
Tue Mar 22 12:39:13 CET 2005
On Tue, 2005-03-22 at 01:19, Linux Query wrote:
> Hi All!
>
> I want to limit each clients outgoing connections.
> Will the following be ok ?
>
> iptables -A FORWARD -i $internal_interface -s $ip -m
> limit --limit 10/s -j ACCEPT
> iptables -A FORWARD -i $internal_interface -s $ip -j
> DROP
>
> What is a good limit figure ?
it would be saner to use the connlimit match from PoM, or the newer
hashlimit match for this.
-j
--
"Please do not offer my god a peanut"
--The Simpsons
More information about the netfilter
mailing list