En r�ponse � Darren Reed <[EMAIL PROTECTED]>: > > I am currently trying to limit the number of incoming connections > > on a Solaris 8 public server. > > > > For my Linux boxes, I use a feature of iptables called iplimit, > > which enables to reject/drop incoming connections when the parallel > > number of connexions from one specific host reach a certain value. > > This avoids my hosts behing overloaded by a few 'aggressive' > clients. > > > > I was not enable to find such a feature on ipfilter in the FAQs or > > tutorial. Does this feature exist ? Is there a way to reproduce such > > a behaviour ? Or is this definitely impossible to do ? > > this is another of the things already in 4.0alpha. > Thanks. I had a look on the ipfilter4.31 manpages but I only found the "count" action, which does seem to be usable for filtering :
++ [...] causes the packet to be included in the accounting ++ statistics kept by the filter, and has no effect on whether ++ the packet will be allowed through the filter. [...] Is this the action to use or not ? Are the manpages up-to-date for this release and is there any online documentation for v4 ? Thank you for your time and involvement, -- Jean-Charles
