How about iptables -A INPUT --destination <blah> -p tcp --dport 80 -m state NEW -m limit --limit 3/s -j ACCEPT iptables -A INPUT --destination <blah> -p tcp --dport 80 -m state NEW -j DROP Adjust the 3/s number higher or lower depending on how much traffic your site gets per second on average and then put it a little bit higher. -----Original Message----- From: Robert La Ferla [mailto:robertlaferla@xxxxxxxxxxx] Sent: Monday, July 28, 2003 10:29 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: Need example of ip rate limiting Anyone have examples of iplimit to limit http DoS attacks?
