It even kills existing connections from that particular host if I remember correctly. Pretty brutal!
Regards, -Jeppe On Sun, Jun 27, 2010 at 7:58 AM, Rich Testani <[email protected]> wrote: > I've had the same question. Is there a way to change the penalty length? > > Thanks, > Rich Testani > > On 6/27/2010 10:32 AM, Sean Cavanaugh wrote: >> >> it will block ALL connections from the IP, no matter what service it is >> for. >> >> -------------------------------------------------- >> From: "Jeppe Øland" <[email protected]> >> Sent: Sunday, June 27, 2010 3:15 AM >> To: <[email protected]> >> Subject: [pfSense Support] Rule / Advanced options / new connections per >> seconds? >> >>> Hi there, >>> >>> I have been using the "Max new connections / X seconds" option to >>> provide anti-hammer support for my SSH server. >>> Just now, I noticed a few things when I accidentally tripped it: >>> >>> 1) Other rules were affected as well. >>> In my case the SSH 4/60 max killed my web server when coming from >>> the killed IP. >>> 2) The connection didn't come back for 1 hour! >>> Is the value in minutes or is something else going on? >>> >>> This happened on a "few weeks old" 2.0 release, but I think at least >>> #2 happened on 1.x as well. >>> >>> Regards, >>> -Jeppe >>> >>> --------------------------------------------------------------------- >>> To unsubscribe, e-mail: [email protected] >>> For additional commands, e-mail: [email protected] >>> >>> Commercial support available - https://portal.pfsense.org >>> >>> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [email protected] >> For additional commands, e-mail: [email protected] >> >> Commercial support available - https://portal.pfsense.org >> > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > Commercial support available - https://portal.pfsense.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
