Defense against a client?
Chuck Anderson
cra at WPI.EDU
Mon Jan 16 15:13:07 UTC 2012
On Mon, Jan 16, 2012 at 01:13:44PM +0100, Tom Schmitt wrote:
>
> -------- Original-Nachricht --------
> > Datum: Mon, 16 Jan 2012 11:49:46 +0100
> > Von: Roel Wagenaar <roel at wagenaar.nu>
> > Betreff: Re: Defense against a client?
>
> >
> > In this case iptables is your friend.
> >
> > One of my solutions is partly based on this:
> >
> > http://codingfreak.blogspot.com/2010/01/iptables-rate-limit-incoming.html
> >
>
> thank you, this is very helpfull. I will try it this way.
Unfortunately, these sorts of per-IP limiting are going to become more
and more inappropriate with the likes of Carrier Grade NATs, since
there will be many subscribers sharing a single public IP address.
You may end up causing performance problems for legitimate traffic.
More information about the bind-users
mailing list