Date: Sun, 5 Jun 2005 21:13:15 +0300 From: Giorgos Keramidas <keramida@freebsd.org> To: Riccardo Giuntoli <taglio@gmail.com> Cc: freebsd-stable@freebsd.org, freebsd-questions@freebsd.org, freebsd-pf@freebsd.org Subject: Re: limit number of tcp connection for a GID Message-ID: <20050605181315.GE16327@gothmog.gr> In-Reply-To: <31fbaca905060510563c64eb49@mail.gmail.com> References: <31fbaca905060510563c64eb49@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2005-06-05 19:56, Riccardo Giuntoli <taglio@gmail.com> wrote: > Hi folks, > Do you have any idea for limiting the number of tcp ESTABLISHED > connections for a GID? ipfw can match connections per uid/gid and it also has limiting capabilities. When combined with dummynet, it can also enforce bandwidth limits. See the ipfw(8) manpage for details. I'm not sure if pf does this already. Even if it doesn't though, it may be possible to write a transparent proxy that limits the connections per uid/gid. The support for transparent proxies in pf is awesome :-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050605181315.GE16327>