In the pfSense book, there's a section (6.6.9.3) titled "Maximum New
Connections / Per Second". It says that "Any IP address exceeding that
number of connections within the given time frame will be blocked for one
hour." When using VoIP, which uses UDP, if one IP sends calls to your VoIP
switch with pfSense in the middle, there's one state established. Within
that state if that same IP sends, say 5 messages in a second, are these
messages considered 5 connections in one state or 1 connection in one state?
My aim is to restrict UDP connections per second from all IPs in a rule.
