Date: Thu, 20 Jun 2002 23:58:10 -0700 From: Terry Lambert <tlambert2@mindspring.com> To: Luigi Rizzo <rizzo@icir.org> Cc: Giorgos Keramidas <keramida@FreeBSD.ORG>, hackers@FreeBSD.ORG Subject: Re: Limiting clients per source IP address (ftpd, inetd, etc.) Message-ID: <3D12CE82.C6761D96@mindspring.com> References: <20020621000924.GA2178@hades.hell.gr> <3D129CA8.EFADA4FF@mindspring.com> <20020620222032.A73450@iguana.icir.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Luigi Rizzo wrote: > On Thu, Jun 20, 2002 at 08:25:28PM -0700, Terry Lambert wrote: > > Giorgos Keramidas wrote: > > > I've been thinking for quite some time to add per-client-IP limiting > > > to ftpd, and I had almost decided upon something like the following, > ... > > Someone just did something similar for inetd (per IP per port). > > > > The more I think about this, and the fact that there is code growing > > to do basically the same thing in every program, the more I think > > that the code to do this needs to be centralized. > > in fact there is an ipfw rule which does just this: > > ipfw add allow ip from any to any limit src-addr 5 > > and here you go... Can this be done per port? THis is what both the FTP and the inetd modification movements have been about... -- Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D12CE82.C6761D96>