On Thu, 2004-09-02 at 10:16, Wolfgang Pichler wrote:
> hi all,
>
> an hour ago i was hit by a sort of dos attack (someone sent nearly
> 200000 mails to our mail addresses in the form of [EMAIL PROTECTED]).
> I've now googled around to see if its possible to limit the number of
> connections from one ip with pf - but havn't found something useful.
>
> Can someone please point me to the right direction ?
>
> Thanks
>
> regards,
> Wolfgang
man 5 pf.conf
read the section titled "STATEFUL TRACKING OPTIONS"
you appear to be asking for the functionality of:
max-src-states
Limits the maximum number of simultaneous state entries that a
single source address can create with this rule.
-j
=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~
Time is an illusion, lunchtime doubly so. -- The Hitchhiker's Guide to
the Galaxy
=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~
