How can i limit connection from host?
I do a touch on my network and i saw a lot of connections from a single ip address on the network.
I need help
add action=drop chain=forward comment="" connection-limit=200,32 disabled=no protocol=tcp
http://wiki.mikrotik.com/wiki/Manual:IP ... Properties@fekler,
what does connection-limit=200,32 stand for.
Explain this rule more please
add chain=forward protocol=udp limit=50,5 action=drop
You can obviously get more firewall matches to drop packets off of instead of just setting a hard limit for everything, but that's the rule in it's most basic form. What it means is that the first 5 packets of UDP are ignored from the count, and after that only anything above 50 packets per second are dropped. The rule can also apply to different kinds of traffic like TCP and ICMP, it's just narrowed down by the protocol matcher.limit (integer,time,integer; Default: ) Matches packets within given pps limit. Parameters are written in following format: count,time,burst.
count - maximum average packet rate measured in packets per time interval
time - specifies the time interval in which the packet rate is measured
burst - number of packets which are not counted by packet rate