how to limit the connection number of client

ahlai · July 8, 2006, 10:33pm

In my lan ,there are only 9 computer,
but always have 3000 connections,/ip/firewall/connection/print,i can see.
how to limit the connection number of each client?
thanks

sergejs · July 9, 2006, 6:11am

/ip firewall filter add chain=forward protocol=tcp tcp-flags=syn connection-limit=101,32 action=drop

This rule will allow 100 TCP simultaneous connection per network user.

zong · July 10, 2006, 5:06am

Hii…
I am using MT 2.9.6
using this rule but client can open more than 5 connections per Ip address.
/ip firewall filter add chain=forward protocol=tcp tcp-flags=syn connection-limit=4,24 action=drop

here my config
local : 192.168.168.200 netmask : 255.255.255.0
public : 10.97.20.200 netmask : 255.255.0.0
ip firewall nat> add chain=srcnat action=masquerade out-interface=Public

pls assist

sergejs · July 10, 2006, 5:08am

Upgrade your router to the latest MikroTik RouterOS version.
your rule allows 3 connections per network.
4 - is allowed connections, 24 - subnet mask.
Change connection-limit configuration.

zong · July 10, 2006, 5:18am

so if using this ver 2.9.6 can not limit connection per ip address ?
mhhh

sergejs · July 10, 2006, 6:02am

It should work, however it’s recommended to ugprade.
Note, given rule will limit TCP connections.

zong · July 10, 2006, 9:20am

what the correct rule for MT 2.9.6 ?

thx

normis · July 10, 2006, 9:23am

you should consider upgrading if something doesn’t work for you