Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Captive portal and limiting the number of sessions per IP

    Captive Portal
    2
    2
    1028
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      awangatb00 last edited by

      I have a PFSence install on a large network (+2500) and we mainly use it for the captive portal.  We use no authentication as this is just one of the captive portals saying you agree to take responsibility if you do something illegal.  In addition we have the captive portal set so each user can only use 1.5mb down and 256k up.  What I am wanting to know if it is possible is limit the number of sessions per users.  I think that "Maximum concurrent connections" might be what I need but the text after it makes me think it has more to do with the amount of times the Captive portal webpage would be loaded.

      The reason why this is an issue is the PFsence server feeds into another firewall to block items like porn, ad's and such.  The firewall that the PFsence server feeds into has a limit of 10,000 sessions and we hit this most days and things get really slow.  My hope is if I limit the number of sessions the people that are hogging the network will be slow and everyone else will have good speed.

      Any comment or suggestions would be appreciated.

      1 Reply Last reply Reply Quote 1
      • Derelict
        Derelict LAYER 8 Netgate last edited by

        Not in the portal itself but probably in the firewall advanced rules for the rule that passes outbound sessions.

        In advanced options you have things like:

        Maximum state entries this rule can create
        Maximum number of unique source hosts
        Maximum number of established connections per host (TCP only)
        Maximum state entries per host

        No comment on whether this will enhance or degrade the user experience.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy