Sizov Alexander wrote:
Hi, misc.
Whether there is a way restriction of quantity of simultaneous
connections from one ip address, using pf?
I would suggest you start by reading the following:
http://openbsd.org/faq/pf/filter.html
And as you are at it. Read the complete PF FAQ, it's very good and will
answer most likely your other questions as well.
Just an example of this:
max-src-states number
When the source-track option is used, max-src-states will limit the
number of simultaneous state entries that can be created per source IP
address. The scope of this limit (i.e., states created by this rule only
or states created by all rules that use source-track) is dependent on
the source-track option specified.
