On Feb 06 21:52:20, facebookman...@gmail.com wrote: > Hi, > > Turns out this (http://home.nuug.no/~peter/pf/en/long-firewall.html) bans > any IP connecting from mobile devices: > > pass in on $ext_if inet proto tcp from any to any port 80 keep state > (max-src-conn 100, max-src-conn-rate 15/5, overload <bruteforce> flush > global) > Works fine when connecting from regular PCs though. Why is that? Do mobile > devices connect differently somehow?
tcpdump such a session to see what kind of connection your mobile device does to port 80; my android's browser for example goes over 15/5 like nothing. > And can someone recommend a mobile-friendly bruteforce rule for port 80? It depends on your situation entirely. Do you want to block >15/5 clients?
