Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is it possible to limit response to incoming traffic?

    Traffic Shaping
    2
    3
    1.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      darioj
      last edited by

      Let's say traffic from various public hosts flows into the WAN, NAT forwards it to a host on OPTx that replies with packets shaped to a certain limit, above which a delay or drop is applied.

      Incoming Traffic –--> WAN ----> OPTx
              ^                                        |
              |          Reply is limited            |
                ---<---------<---------<----

      Can this level of bandwidth control be achieved with pfsense 2.0  ???

      Thanks

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        The way i did it was by limiting connections per port/service.

        what I did in some clients:

        • Configure advanced rule options to limit connection by second/host

        • Install crontab package

        • Edit expiretable rules to reduce check times(in my case, check every minute ips blocked more then 120 seconds)

        This way, a host that get blocked by rule, stay only 2 minutes blocked.

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • D
          darioj
          last edited by

          Thanks!

          I'll try it right away!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.