On Tue, Aug 14, 2007 at 12:17:34AM +0200, Jorijn Schrijvershof wrote: > Sam Mason wrote: > > UDP is a connectionless protocol, hence "10 new connections per second" > > doesn't make much sense. What I think you're saying is that you're > > allowing 10 new computers to send packets to you every second, on top of > > the computers that "regularly" send you packets > > It seems I declared myself the wrong way. I do know what UDP is. > > > Seems I didn't make myself clear enough. I know what UDP is and I did > wanted to refer to new clients per second. My apologies :)
Sorry, I guessed you knew what you were on about, I was just having a pedantic day. If you want some firewall rules, I'd recommend putting a limit on the maximum number of packets per second you receive rather than the number of "clients" hitting your box. NTP isn't like a web server where every outstanding request uses a meg or two of memory + lots of CPU time to generate a fancy web page. Each request takes very little in the way of resources, so putting a limit on the total number of requests makes more sense (to me) than the number of outstanding clients. Sam _______________________________________________ timekeepers mailing list [email protected] https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
