On 07/02/2013 12:38 PM, Daniel Pocock wrote: > > > On 02/07/13 21:20, Tom Eastep wrote: >> On 07/02/2013 11:07 AM, Daniel Pocock wrote: >>> >>> >>> I've tried to create a per-IP rate limit in /etc/shorewall/rules: >>> >>> Limit(HTTPRate,25,1):none all dmz:A.B.C.D tcp http >>> >>> >> >> Limit has been deprecated for some time. You should be using the 'RATE >> LIMIT' column. > > I understand it was deprecated and the rate limit column does work > > However, I was keen to have the per-IP rate limit to protect from crude > DoS attacks, and the rate limit column doesn't appear to support that.
The RATE LIMIT column supports per-IP rate limiting. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ This SF.net email is sponsored by Windows: Build for Windows Store. http://p.sf.net/sfu/windows-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
