[olug] Limiting connections to Apache server based on IP address?

[Jay Hannah]

On Sep 24, 2010, at 8:51 PM, Kevin wrote:
>    iptables -I INPUT -p tcp --dport 80 -m connlimit --conlimit-above 100
> --connlimit-mask 24 -j REJECT --reject-with icmp-port-unreachable

Oh, very cool. Hadn't heard of  --conlimit-above   :)

I drifted from iptables to ufw, but there's a good reason to drift back if I ever needed that feature. Thanks!

Jay Hannah
Software Architect
jhannah at mutationgrid.com | http://mutationgrid.com | 1-402-598-7782