From owner-freebsd-ipfw@FreeBSD.ORG Mon Jan 10 21:22:08 2005 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 431CF16A4ED for ; Mon, 10 Jan 2005 21:22:08 +0000 (GMT) Received: from hotmail.com (bay21-f11.bay21.hotmail.com [65.54.233.100]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8A31043D1D for ; Mon, 10 Jan 2005 21:22:07 +0000 (GMT) (envelope-from carlmarkbsd@hotmail.co.uk) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 10 Jan 2005 13:22:02 -0800 Message-ID: Received: from 212.113.164.98 by by21fd.bay21.hotmail.msn.com with HTTP; Mon, 10 Jan 2005 21:21:55 GMT X-Originating-IP: [212.113.164.98] X-Originating-Email: [carlmarkbsd@hotmail.co.uk] X-Sender: carlmarkbsd@hotmail.co.uk From: "Carl Mark" To: freebsd-ipfw@freebsd.org Date: Mon, 10 Jan 2005 21:21:55 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed X-OriginalArrivalTime: 10 Jan 2005 21:22:02.0349 (UTC) FILETIME=[6D2539D0:01C4F75A] Subject: limiting connections X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Jan 2005 21:22:08 -0000 Hello folks, I'm trying to set up a ruleset that limits every user to X tcp connections, since I have 300 active users on each server. I've been trying to work it out with the ipfw limit but I really don't know how effective it is. For example: ipfw -q add 15 allow tcp from me to any 80 limit dst-port X keep-state out setup Will this limit the whole machine to X connections that match the rule? I wanted to build somehting that would limit every user to X conns without having one rule for each user using the "uid" directive. Thanks for your precious help. Regards, Carl _________________________________________________________________ Express yourself with cool new emoticons http://www.msn.co.uk/specials/myemo