From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 26 15:04:25 2007 Return-Path: X-Original-To: freebsd-ipfw@freebsd.org Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id EC56916A401 for ; Mon, 26 Feb 2007 15:04:25 +0000 (UTC) (envelope-from nikola@vlaeonline.com) Received: from munem.it-box.org (munem.it-box.org [67.159.30.92]) by mx1.freebsd.org (Postfix) with ESMTP id CF0F313C49D for ; Mon, 26 Feb 2007 15:04:21 +0000 (UTC) (envelope-from nikola@vlaeonline.com) Received: from Nikola (unknown [85.30.84.115]) by munem.it-box.org (Postfix) with ESMTP id D27013648002; Mon, 26 Feb 2007 09:28:38 -0500 (EST) Message-ID: <001401c759b3$1c169ad0$02170a0a@Nikola> From: "Nikola Stojanoski" To: "Jordi Moles" , References: <45E2AA23.3020901@cdmon.com> Date: Mon, 26 Feb 2007 15:33:26 +0100 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=response Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3028 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3028 Cc: Subject: Re: ipfw along with netstat X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Feb 2007 15:04:26 -0000 you can use limit for that. here is the part about limit in ipfw manual: limit {src-addr | src-port | dst-addr | dst-port} N The firewall will only allow N connections with the same set of parameters as specified in the rule. One or more of source and destination addresses and ports can be specified. so a simple way to limit max connections per ip is: ipfw add allow ip from any to any limit src-addr 100 this way you will limiit yourself also with 100 connections per ip, but you can play around with recv, xmit, via and other settings to fit your needs Regards ----- Original Message ----- From: "Jordi Moles" To: Sent: Monday, February 26, 2007 10:36 AM Subject: ipfw along with netstat > hi, > > I've done a lot of research about that but found anything like i need. I'm > running an ipfw firewall on a FreeBSD 6.1 and i wonder if ipfw can add > rules automatically when it detects, for example, that an ip address has > 100 connections open in the server. I'm doing a similar thing with a perl > script and netstat. The script counts how many connections an ip address > opened and it automatically adds a new rule to the firewall, but I'm > looking for a way in which ipfw does that on its own. > > thank you. > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org"