thr3ads.net - freebsd stable - limit number of tcp connection for a GID [Jun 2005]

If this information is useful, please help other people find it:
Share via:

Riccardo Giuntoli

2005-Jun-05 10:56 UTC

limit number of tcp connection for a GID

Hi folks,
Do you have any idea for limiting the number of tcp ESTABLISHED
connections for a GID?
Shall i use a special rule in my pf.conf or shall i use a kernel limit
or any other rule in the system?
Best Regards
-- 
Name: Riccardo Giuntoli
Email: taglio@gmail.com
Homepage: http://www.luxoro.org/
Location: Genova, Italy
6BONE Handle: RG581-6BONE
PGP Key: 0x67123739
PGP Fingerprint: CE75 16B5 D855 842F AB54 
                          FB5C DDC6 4640 6712 3739
Key server: hkp://wwwkeys.eu.pgp.net

Giorgos Keramidas

2005-Jun-05 11:13 UTC

head link

limit number of tcp connection for a GID

On 2005-06-05 19:56, Riccardo Giuntoli <taglio@gmail.com>
wrote:> Hi folks,
> Do you have any idea for limiting the number of tcp ESTABLISHED
> connections for a GID?
ipfw can match connections per uid/gid and it also has limiting
capabilities.  When combined with dummynet, it can also enforce
bandwidth limits.  See the ipfw(8) manpage for details.

I'm not sure if pf does this already.  Even if it doesn't though,
it may be possible to write a transparent proxy that limits the
connections per uid/gid.  The support for transparent proxies in
pf is awesome :-)

freebsd stable - Jun 2005 - limit number of tcp connection for a GID

limit number of tcp connection for a GID

limit number of tcp connection for a GID