On Monday 28 October 2002 4:31 pm, rwc@lanl.gov wrote: > Is anyone working on the following modification to iptables? Dynamically > watch for connections coming from any source IP addresses that exceeds a > predefined number of connections per unit time. When seen, block all > subsequent connections from that source for a predefined period of time or > indefinitely. Currently, one can do this for specific predefined source IP > addresses, but it would be good to have the ability to do this without > having prior knowledge of the the offending IP source. You might want to investigate the "recent" match in p-o-m. Antony. -- Software development can be quick, high-quality, or low-cost. The customer gets to pick any two out of three.
