George Georgalis <[EMAIL PROTECTED]> writes:
> On Fri, Oct 03, 2003 at 09:10:15AM -0400, Adam Denenberg wrote:
>>dont think you can do this natively in qmail, but i know ipchains has a
>>"rate limiting" module that will allow you to do just what you want. 
>>You can say how many connections in a certain amount of time are allowed
>>to a certain port.
>
> However, to the best of my knowledge, iptables limit will not limit
> particular ip addresses but port 25 in general, unless you have rule for
> each ip address (eg all of them) -- that would probably break something,
> however you may get viable results by limiting new connections from
> large subnets that you want to throttle.

To limit 5 connections per IP:

1) patch-o-matic the iplimit patch.
2) install new netfilter modules.
3) iptables --A INPUT -p tcp --dport smtp -m iplimit --iplimit-above 5 -j DROP

- Erik


Reply via email to