Hi,
On 23-Aug-99 Van Liedekerke Franky wrote:
> Hi all,
>
> I know tcpserver can limit the number of concurrent connections, but can t
> also limit the number of connections for a specific period of time for one
> ip adres, lets say 100 connections for an ip adres in 5 minutes? This to
> stop mailbombers and MS servers running wild (because of stray line
> errors...).
> For the moment I run through the tcpserver logfiles (for qmail-smtpd) myself
> to count the number of times an ip connected, and block it if it's higher
> than a specific number, but people can still do lots of stuff in 5
> minutes...
> Maybe someone has already a patch for this?
I'm working on something like this... But I'm not there yet. Maybe next month.
The patch I'm doing works like this:
- The control is based not on IP addresses but on IP pools. You define how
many bit's of the IP address define the pool. For ex. if b (number of bits)
is 24, all the IP addresses of the same /24 would fall in the same IP Pool.
- So first you define the IP Pool (I'm using /25 for testing purposes), and
then you define how many servers you will allow for each IP Pool.
In your case, if you want to limit by IP address, you would set the IP Pool
bits to 32.
No promisses, but this should be ready during September.
Best Regards,
---
Pedro Melo <[EMAIL PROTECTED]>
IP - Engenharia de Rede <http://ip.pt/>
Av. Duque de Avila, 23, 1049-071 LISBOA - PORTUGAL
tel: +351 1 3166740/00 (24h/dia) - fax: +351 1 3166701
