Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: qulobit on December 15, 2021, 07:03:13 PM

Title: Max new connections (max-src-conn-rate) for port forwarding rules
Post by: qulobit on December 15, 2021, 07:03:13 PM
Hello everyone

I have been using OPNsense for ~1 year and I am looking to rate limit some of the (tcp) open ports. I could do that easily for the ports that terminate at the router ("advanced" settings in edit rule screen > Max new connections), but I can't seem to find a way to do for rules associated with a port forward.

Reading https://forum.opnsense.org/index.php?topic=2097.msg6879#msg6879 suggests that we can't edit those associated rules, but is there any other way to enable max-src-conn-rate?

Thanks very much!
Title: Re: Max new connections (max-src-conn-rate) for port forwarding rules
Post by: Fright on December 15, 2021, 08:29:06 PM
Hi
maybe you can try not to add the associated rule but create it yourself with the required parameters?)
Title: Re: Max new connections (max-src-conn-rate) for port forwarding rules
Post by: qulobit on December 16, 2021, 08:01:55 AM
That worked. Thanks! I will change all the rules to manual.
BTW, shouldn't there be a better way to accomplish this?

Also, how do I know if I am bringing all the same settings to the new rules? Is there any way to see what is in the auto generated rules?

Thanks again!
Title: Re: Max new connections (max-src-conn-rate) for port forwarding rules
Post by: Fright on December 16, 2021, 09:22:20 AM
glad it works)
QuoteIs there any way to see what is in the auto generated rules?
i think you can view "auto-rule" id in Firewall: Rules (click '?' sign after Description header) and search for this rule in Firewall: Diagnostics: Statistics -> Rules
Text only | Text with Images