How do I suppress logging on packets that are over the CONNLIMIT? Users downloading from our server will use multiple wgets to maximize the amount that they can download. It's not the best technique, but it's human nature to go for the simplest workaround.
To avoid a DOS from one person trying to download dozens of files at once, we're using a CONNLIMIT rule. This fixes the accidental DOS problem, but produces a lot of syslog messages. Is there a way to suppress logging on CONNLIMIT rules? ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users