Author Topic: How to Restrict the Number of Parallel Connections Using IPtables? (Read 2138 times)

lijeshk · « **on:** November 17, 2013, 05:49:47 am »

We can use connlimit module to put such restrictions.

To allow 3 ssh connections per client host, enter:

# iptables -A INPUT -p tcp --syn --dport 22 -m connlimit --connlimit-above 3 -j REJECT
Set HTTP requests to 20:

# iptables -p tcp --syn --dport 80 -m connlimit --connlimit-above 20 --connlimit-mask 24 -j DROP
Where,

--connlimit-above 3 : Match if the number of existing connections is above 3.

--connlimit-mask 24 : Group hosts using the prefix length. For IPv4, this must be a number between (including) 0 and 32.

--

News:

Author Topic: How to Restrict the Number of Parallel Connections Using IPtables? (Read 2138 times)

lijeshk

How to Restrict the Number of Parallel Connections Using IPtables?