|
|||
Need help with pf
Hi everyone,
In an effort to prevent a DoS attack to my web server, I am trying to set the maximum 1 request per 2 seconds to each client in pf.conf: Quote:
|
|
|||
I think this is the rule which matched the traffic being test, because when I comment out this rule, I cannot access the web server.
|
|
||||
Perhaps your test is flawed, or perhaps the rule's "1/2" value does not take into account the moving average calculation for max-src-conn-rate. The example in the Stateful Tracking Options section of the pf.conf(5) man page uses "100/10".
|
|
|