Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Really newbie question - limit connections per host.

    Firewalling
    2
    3
    1370
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      contafalsa337 last edited by

      Hi,

      Is it possible to add a rule that limits the total connections opened by one of the clients on my network? By "one" I mean, a general rule, so that every single computer is not able to open more than that limit, say 200 connections. On this particular network users are allowed to use p2p clients, for instance (since they will deal with the consequences of theirs acts), and some of them sometimes leave the p2p clients opened, and the network gets slow. I do not want to limit the total download for each computer, just the total number of opened connections.

      I have a rule on my LAN like this:

      proto: *
      source: LAN net
      port: *
      destination: *
      port: *
      gateway: *
      PASS

      In the advanced options of this rule (it's active right now):

      –- this is not configured like this, I'm asking
      Simultaneous client connection limit: [ 200 ] ??

      ??

      Maximum new connections / per second  [  ] ??
      State Timeout in seconds  [  ] ??
      –-

      Is this ok for what I need?

      1 Reply Last reply Reply Quote 0
      • GruensFroeschli
        GruensFroeschli last edited by

        _>
        Seriously. Why dont you just try?

        (yes it should work)

        1 Reply Last reply Reply Quote 0
        • C
          contafalsa337 last edited by

          Regarding user feedback you can never be sure..so I have to be certain that this is the right approach, since I cannot reproduce the scenario (go to the client and use the network for an entire day, even if I could, that's not enough to really measure it, 1 day..)..

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense Plus
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy