Im trying to set up one simple firewall filter rule to limit # of connections to 20 on my PPPoE users, all users have a public IP address.
16 ;;; Drop 30+ Connections
chain=customer protocol=tcp tcp-flags=syn connection-limit=20,32
action=drop
Its in my “customer” chain which is a chain jumped into directly from the forward chain… I can set the # of connections to 2 and users will still open up 10 brand new ones and its completely ignored?
Post the rules that are configured before this one at firewall.
Set Connection limit of 50 for all P2P. It has greatly reduced the number of P2P connections, but not down to 50. Is there an allowable minimum here? At least a hundred P2P connections (ConTrack) are syncing.
Hm, as far as I know P2P may use UDP connections, however the particular connection limit can be applied only for TCP traffic (it is not possible to limit UDP in the similar way).