Questions tagged [connlimit]

16 questions
4
votes
1 answer

How do you set a max connection limit with nftables?

I'm looking to limit the number of concurrent connections to a given service running on a Linux server. My understanding is that this can be done in iptables using the connlimit module. So for example, if I wanted to limit concurrent connections to…
PeterM
  • 113
  • 1
  • 5
3
votes
0 answers

nginx limit connections based on parameters

My website is a forum, and it has 3 type of URLs as below: Thread view: forum.php?mod=viewthread&tid=1256&page=2 Thread List: forum.php?mod=forumdisplay&fid=125&page=61 Display pictures: forum.php?mod=attachment&aid=afklafaklj Because now my…
Free P
  • 31
  • 1
2
votes
1 answer

Limit administrator RDP session to single instance instead of default 2 simultaneous?

I have a special request case on one server, win2003 R2, where they are accessing it via RDP administrative session. There are multiple users who access it but they want to ensure only a single user is capable of being logged in at any given…
Aszurom
  • 453
  • 2
  • 8
  • 19
2
votes
0 answers

HAProxy: Limmit concurrent connections based on HTTP header field

I try to limit the number of concurrent connections using HAProxy stick-tables based on HTTP header fields. I could find plenty of examples using IP addresses, but this doesn't work in my case. Our application differs user account solely on the HTTP…
Ralph
  • 33
  • 5
2
votes
1 answer

Nginx Config on DreamHost VPS

I got my site up and running on nginx on my Dreamhost VPS. Cool. I wanted to limit the number of connections per IP by adding the following to the http block of the site-wide nginx conf file…
kingkool68
  • 243
  • 3
  • 10
2
votes
2 answers

What can lead to a zone memory exhaustion and how Nginx reacts to it?

What is a possible scenario for exhausting the memory designated to a connection zone with limit_conn_zone directive and what are the implication in this case? Suppose I have this in my configuration: http { limit_conn_zone $binary_remote_addr…
1
vote
1 answer

Limit number of incoming packets per second for a INPUT UDP port [per IP only, not globally] [Ubuntu IPTables]

I searched and I can't find a rule to limit the count of the incoming packets for a INPUT UDP port per second and per IP. I need that per all IPs that connect to my socket, not for a specific one. I'm using iptables on Ubuntu 14.0.4 LTS amd64. I am…
rez
  • 125
  • 1
  • 2
  • 6
1
vote
1 answer

iptables connlimit: exclude multiple IP addresses

I have currently this IPTABLES command: iptables -A INPUT -s ! 192.168.0.2 -p tcp --syn -m connlimit [...] -j DROP As far as I know, such rule limit some number of connections following various parameters, except for 192.168.0.2 which is free to…
GPointer
  • 15
  • 1
  • 4
1
vote
0 answers

nginx, limit_conn_zone $request_body not working

I would like to limit some nginx location and avoid two parallel FastCGI threads for the same POST data ($request_body). I've added a limit connection zone and configured connection limit on a location: log_format postdata '$remote_addr -…
0
votes
1 answer

Nginx: Limiting number of connections for all content types with exceptions

I'm limiting number of simultaneous connections from one $remote_user to n using conn_limit It works like a charm. However, I will be thrilled to find a way to add exceptions to this. I want user to be able to get *.jpg and *.sql files in as many…
0
votes
1 answer

Nginx: restrict number of connections per basic auth user

Got nginx serving several big files. Users get access through basic authentication. htpasswd I want to curtail simultaneous download of files to 5 connections max PER USER. There are more than 1 user getting access through 1 IP address so it is not…
0
votes
2 answers

iptables connlimit triggering unexpectedly

I've been using these firewall rules: -I FORWARD -p tcp --syn -m connlimit --connlimit-above 50 -j REJECT -I FORWARD -p tcp --syn -m connlimit --connlimit-above 50 -j LOG --log-prefix "CONNLIMIT: " --log-level debug it seems straightforward enough:…
neoice
  • 874
  • 4
  • 17
0
votes
1 answer

only allow a specific port that can be connected by only one ip address at the same time

I have a open port, 40002, I want to limit that at the same time the port can only be connected by one ip address(not specific address). if there is an ip address conntecing to that port already, other IPs will fail to connect. is is possible…
0
votes
1 answer

apache how to limit per user ip

i have a password protected directory with hundreds of users in htpasswd file. i want to allow download of files on these conditions: check if username is valid (already done). check if another connection with the same username exists. (the are…
Bor691
  • 213
  • 4
  • 14
0
votes
0 answers

How to limit the total volumn from a TCP connection

I have a particular application with one type of connection that mostly sends packets to clients while receives nothing but login request. (i.e. video streaming) Therefore I want to limit the Total Volumn Received from a TCP connection (websocket…
George Y
  • 380
  • 2
  • 11
1
2