> When X amount of data reaches a certain limit, say 50mb then the > netfilter box drops all further connections from Node A for a specified > period of time, say 12 hours. You could use the 'quota' and 'recent' matches. Look for them in patch-o-matic > Is this possible with netfilter? would this be something better suited to > Squid or even perhapse some of the ip and traffic shaping stuff? I am not sure if squid has options to do time based acl. Traffic shaping does traffic shaping, not time based acls. Anyway traffic shaper should have other means of measuring the time, from an other source, like a netfilter match. Regards, Maciej Soltysiak
