On Mon, August 28, 2006 14:09, kako@xxxxxxxx wrote: ... > 1, Can I somehow limit every clients to establish (for example) only 30 > active connections? If I remember correctly, you can do that using the connlimit patch : http://www.netfilter.org/projects/patch-o-matic/pom-base.html#pom-base-connlimit "This adds an iptables match which allows you to restrict the number of parallel TCP connections to a server per client IP address (or address block)." I'm not sure if, when you specify an address block, it still limits connections per source IP.. Maybe someone else knows this for sure or you can try it yourself. Gr, Rob
