From owner-freebsd-net@FreeBSD.ORG  Fri May 27 12:39:40 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 689F616A41C
	for <freebsd-net@freebsd.org>; Fri, 27 May 2005 12:39:40 +0000 (GMT)
	(envelope-from rink@stack.nl)
Received: from mailhost.stack.nl (vaak.stack.nl [131.155.140.140])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1941143D1F
	for <freebsd-net@freebsd.org>; Fri, 27 May 2005 12:39:39 +0000 (GMT)
	(envelope-from rink@stack.nl)
Received: from toad.stack.nl (zen.stack.nl [IPv6:2001:610:1108:5010::130])
	by mailhost.stack.nl (Postfix) with ESMTP id 923F51F17A;
	Fri, 27 May 2005 14:39:38 +0200 (CEST)
Received: by toad.stack.nl (Postfix, from userid 1796)
	id 705E788; Fri, 27 May 2005 14:39:38 +0200 (CEST)
Date: Fri, 27 May 2005 14:39:38 +0200
From: Rink Springer <rink@stack.nl>
To: dnr <dnr@freemail.lt>
Message-ID: <20050527123938.GA71639@stack.nl>
References: <032b01c562b6$56153ed0$9f90a8c0@DONATAS>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="DocE+STaALJfprDB"
Content-Disposition: inline
In-Reply-To: <032b01c562b6$56153ed0$9f90a8c0@DONATAS>
X-Editor: Vim http://www.vim.org/
X-Info: http://rink.nu/
X-Operating-System: FreeBSD 4.11-STABLE i386
User-Agent: Mutt/1.5.6i
Cc: freebsd-net@freebsd.org
Subject: Re: tcp session limit with ipfw
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 27 May 2005 12:39:40 -0000


--DocE+STaALJfprDB
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello,

>=20
> so, how limit using IPFW any other atempts to establish ftp session number
> 4,5 etc... so we could use maximum 3sessions/1 IPaddrs?

Have you considered looking at your FTP daemon's configuration? proftpd and
vsftpd provide nice facilities for the functionality you are looking
for.

If you run your ftpd from inetd, you can also override this per inetd servi=
ce.
man inetd for more information.

--=20
Rink P.W. Springer                                - http://rink.nu
"God, root, what is difference?"                  - Pitr, Userfriendly

--DocE+STaALJfprDB
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFClxUKb3O60uztv/8RAmlEAJwIXONRetFzDHQmeonIl3li4XL3gACff4Cv
X8I6cY1xqiCV2KDLILbyXEs=
=rsry
-----END PGP SIGNATURE-----

--DocE+STaALJfprDB--