Am 06.07.22 um 13:26 schrieb Frank Myhr:
On 2022/07/06 06:27, Nuno Gonçalves wrote:
Yes. I am testing and always and the bug is exposed with a flood ping,
for example, so from the same IP.
Yes, I agree that this should accept 5 new sources per second, but
each can then do unlimited requests.
That is why I suggest the wiki to be updated.
Thanks for clarifying. Now I understand your need to also move the ct
accept rule to the end of the "inbound" base chain to counter the ping
flood from a single ip address.
I'm not going to update the wiki page just yet, for several reasons:
* I'm not the author of the example ruleset.
[…]
Best regards,
Frank
Add the suggested rule and add explanations to existing and new instead
of replacing existing content? Let the reader choose who presumably
knows best whether throughput or security is more important.
