Helo Every one
i am running a small network for web surfing (cable net) with fedora core 3 and linux-2.6.5-1.358. i have a problem with one of my node (10.0.0.17). and this ip is generating the maximum of requests i want to limit its request throug iptables. could any one tell me the specified chain to do this.
for example
# netstat -an | grep 10.0.0.17 | grep tcp | wc -l
159
i just want it should be in between 25 to 50. is there any way ?
how to get rid of maximum requests
-
- Subedar
- Posts: 355
- Joined: Sat May 07, 2005 11:54 am
- Location: Lahore
- Contact:
-
- Site Admin
- Posts: 5132
- Joined: Fri May 02, 2003 10:24 am
- Location: Karachi
- Contact:
Re:
Dear ranatanveer,
Salam,
# iptables -N FLOOD
# iptables -A INPUT -p tcp --syn -j FLOOD
# iptables -A FLOOD -m limit --limit 1/s --limit-burst 3 -j RETURN
# iptables -A FLOOD -j DROP
Best Regards.
Salam,
# iptables -N FLOOD
# iptables -A INPUT -p tcp --syn -j FLOOD
# iptables -A FLOOD -m limit --limit 1/s --limit-burst 3 -j RETURN
# iptables -A FLOOD -j DROP
Best Regards.
Farrukh Ahmed
-
- Subedar
- Posts: 355
- Joined: Sat May 07, 2005 11:54 am
- Location: Lahore
- Contact:
-
- Site Admin
- Posts: 5132
- Joined: Fri May 02, 2003 10:24 am
- Location: Karachi
- Contact:
-
- Site Admin
- Posts: 5132
- Joined: Fri May 02, 2003 10:24 am
- Location: Karachi
- Contact:
Re:
Dear ranatanveer,
Salam,
Best Regards.
Salam,
Yeah its look fine.ranatanveer wrote:if i would like to add the IP address of the node,
# iptables -A FLOOD -s 10.0.0.17 -m limit --limit 1/s --limit-burst 3 -j RETURN
is that ok ??
Best Regards.
Farrukh Ahmed
-
- Subedar
- Posts: 355
- Joined: Sat May 07, 2005 11:54 am
- Location: Lahore
- Contact: