What is this and why is it in my firewall script section?

Discussion in 'Tomato Firmware' started by LanceMoreland, Sep 30, 2012.

  1. LanceMoreland

    LanceMoreland Network Guru Member

    #Restrict number of TCP connections per user
    #iptables -t nat -I PREROUTING -p tcp --syn -m iprange --src-range 192.168.1.50-192.168.1.250 -m connlimit --connlimit-above 100 -j DROP
    #Restrict number of non-TCP connections per user
    #iptables -t nat -I PREROUTING -p ! tcp -m iprange --src-range 192.168.1.50-192.168.1.250 -m connlimit --connlimit-above 50 -j DROP
    #Restrict number of simltaneous SMTP connections (from mailer viruses)
    #iptables -t nat -I PREROUTING -p tcp --dport 25 -m connlimit --connlimit-above 5 -j DROP
     
  2. koitsu

    koitsu Network Guru Member

    They're commented-out examples of how to do certain things. :) The commands don't get run due to being commented out (starting with "#").
     
  3. LanceMoreland

    LanceMoreland Network Guru Member

    Of course. I had not noticed them before. I assume Toastman inserted them in one of his recent builds.
     
  4. koitsu

    koitsu Network Guru Member

    Correct. :)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice