1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

What is this and why is it in my firewall script section?

Discussion in 'Tomato Firmware' started by LanceMoreland, Sep 30, 2012.

  1. LanceMoreland

    LanceMoreland Network Guru Member

    #Restrict number of TCP connections per user
    #iptables -t nat -I PREROUTING -p tcp --syn -m iprange --src-range 192.168.1.50-192.168.1.250 -m connlimit --connlimit-above 100 -j DROP
    #Restrict number of non-TCP connections per user
    #iptables -t nat -I PREROUTING -p ! tcp -m iprange --src-range 192.168.1.50-192.168.1.250 -m connlimit --connlimit-above 50 -j DROP
    #Restrict number of simltaneous SMTP connections (from mailer viruses)
    #iptables -t nat -I PREROUTING -p tcp --dport 25 -m connlimit --connlimit-above 5 -j DROP
     
  2. koitsu

    koitsu Network Guru Member

    They're commented-out examples of how to do certain things. :) The commands don't get run due to being commented out (starting with "#").
     
  3. LanceMoreland

    LanceMoreland Network Guru Member

    Of course. I had not noticed them before. I assume Toastman inserted them in one of his recent builds.
     
  4. koitsu

    koitsu Network Guru Member

    Correct. :)
     

Share This Page