Hello, >From the following documentation, I am trying to figure out which PF tracking >options are also valid for UDP but unfortunately it is not quite clear to me:
https://man.openbsd.org/pf.conf.5#Stateful_Tracking_Options My goal would be to do add rate limiting options to a PF UDP pass rule in order to limit DDoS/DoS attacks on port 53. Interesting would be especially the "max-src-states" option. Is this option also valid for UDP? Is it also possible to use the "overload" option with UDP in order to add source IPs into a table of attackers which I will then block? That would be for an OpenBSD 7.3 firewall. Best regards, Mabi