George Georgalis <[EMAIL PROTECTED]> writes: > On Fri, Oct 03, 2003 at 09:10:15AM -0400, Adam Denenberg wrote: >>dont think you can do this natively in qmail, but i know ipchains has a >>"rate limiting" module that will allow you to do just what you want. >>You can say how many connections in a certain amount of time are allowed >>to a certain port. > > However, to the best of my knowledge, iptables limit will not limit > particular ip addresses but port 25 in general, unless you have rule for > each ip address (eg all of them) -- that would probably break something, > however you may get viable results by limiting new connections from > large subnets that you want to throttle.
To limit 5 connections per IP: 1) patch-o-matic the iplimit patch. 2) install new netfilter modules. 3) iptables --A INPUT -p tcp --dport smtp -m iplimit --iplimit-above 5 -j DROP - Erik