“Break” the port when a certain number of requests are reached

Question

How to automatically break a port when it reaches 20 requests per minute in debian? I think it can be done using iptables

Alexander Prokoshev Alexander Prokoshev 1,967 6 15 · Answer 1 · 2018-08-02T00:26:22

Something like this (for new connections):

iptables -A INPUT -m state --state NEW -p tcp --dport nash_port -m limit --limit 20/minute --limit-burst 1 -j ACCEPT iptables -A INPUT -m state --state NEW -p tcp --dport nash_port -j REJECT

See man iptables-extensions for limit and limit-burst.

“Break” the port when a certain number of requests are reached

1 answer 1

More articles: