Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 1 Mar 2004 19:47:39 +0000
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Gerard Samuel <fbsd-questions@trini0.org>
Cc:        questions@freebsd.org
Subject:   Re: [Repost] Limiting connections to CVS
Message-ID:  <20040301194739.GC2784@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <200403011032.12799.fbsd-questions@trini0.org>
References:  <200403011032.12799.fbsd-questions@trini0.org>
next in thread | previous in thread | raw e-mail | index | archive | help 

--c3bfwLpm8qysLVxt
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Mar 01, 2004 at 10:32:12AM -0500, Gerard Samuel wrote:
> Reposting to list, as I was locked out of -questions over the weekend, an=
d I=20
> don't know if I got any replies.
> -----------------
> I read somewhere that they were able to limit CVS pserver connections
> to 4 a minute.
> I would like to do something similar.
> I currently have a firewall/nat box running 4.9-RELEASE-p1, using ipf.
> The CVS server is behind the firewall/nat box running on 4.9-RELEASE-p1.
>=20
> Thanks for any insight you may provide...

If you're running CVS pserver out of inetd, which I believe is the
usual practice, then you can limit the total number of simultaneous
connections to a service or the maximum rate at which a service may be
invoked: either of those can apply to connections from one specific IP
address or to all connections.  See inetd.conf(5), but the syntax you
want is something like:

    cvspserver     stream  tcp     nowait/0/4  root    /usr/bin/cvs    cvs =
--allow-root=3D/your/cvsroot/here pserver

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--c3bfwLpm8qysLVxt
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFAQ5NbdtESqEQa7a0RAp2nAJ9pKhZhL80VeASIL/s8bGH79qo5RQCeIoYX
dE+wCbEzizvz8+H0JCjWYUg=
=tSHY
-----END PGP SIGNATURE-----

--c3bfwLpm8qysLVxt--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040301194739.GC2784>