I don't think that is attack it just users download high things a lot of time as every time it happen with me it happen from different sites with different users. Eng . Hamed Adel Senior Network Engineer Mail: hamedadel@xxxxxxxxxxxxxxxx Tel : +2 0502528897 Mob: +2 0103503888 Fax: +2 0502528897 Web site: www.egyptnetwork.com -----Original Message----- From: Stefan Palme [mailto:kleiner@xxxxxxxxxxxxxxx] Sent: Wednesday, January 10, 2007 12:32 PM To: squid-users Subject: Re: limit number of request per pconn > There is generally no such answer ("no") in the world of open source > when it comes to features. Ok, so the original question has been, if there is such a feature built into the current squid version :-) > It's not implemented in Squid as there is no known technical reason why > one would like to limit the number of requests a client can send over a > single persistent connection to Squid. So I am wondering why you would > like to limit the number of requests per connection to see if there is > something we have overlooked and there is a valid reason to have this > feature implemented. No, you don't have overlooked something - I need this because of some strange attacks from outside, which make >1500 senseless requests per persistent connection (and very fast). But when the connection is closed, they don't try again (don't ask why - I don't know). So I wanted to limit the number of requests per pconn, because it does not really harm "regular" users, but keeps those "attacks" out. And no, locking out the "bad" IPs is not that easy - every "attack" comes from a different one :-) Regards -stefan-
