IPFW has a 'limit' option, with which you can for example, specify the maximum number of established connections from any client.
The syntax is like this: allow log tcp from any to <my ip> <my ports> limit src-addr 2 This limits everyone to a maximum of 2 established connections each. Is there such functionality in IPF? I use IPF for all of my filtering needs, and IPFW for bandwidth limiting. I'd hate to start mixing roles :) The other problem with the way IPFW does it, is that is doesn't have a "log first" feature to only log the first time someone established state with taht rule. Instead it logs a line for every packet they send. -- Avleen Vig "Say no to cheese-eating surrender-monkeys" Systems Admin "Fast, Good, Cheap. Pick any two." www.silverwraith.com "Move BSD. For great justice!"
