OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: fiterzs on May 09, 2019, 03:05:34 am

Title: automatically block Intranet connections based on access behavior (19.4)
Post by: fiterzs on May 09, 2019, 03:05:34 am

Hello everyone
I would like to set some rules in the Intranet. The number of external connections per IP cannot be more than 1000. If it exceeds 1000, the Internet access will be automatically blocked.

Title: Re: automatically block Intranet connections based on access behavior (19.4)
Post by: fiterzs on May 09, 2019, 06:02:40 am

I did not find a way to block the number of internal links beyond the number

Title: Re: automatically block Intranet connections based on access behavior (19.4)
Post by: fiterzs on May 10, 2019, 04:33:04 am

Is there a way to do this?
thanks

Title: Re: automatically block Intranet connections based on access behavior (19.4)
Post by: hbc on May 10, 2019, 09:03:53 am

Quote from: fiterzs on May 10, 2019, 04:33:04 am

Is there a way to do this?
thanks

Hard to say. Your question sounds like: People may access maximum 1000 ips (per day/hour/lifetime?) and then internet is shut down forever. This will not work.

You can set rate limits in firewall rules for:

• Maximum number of established connections per host (TCP only)
• Maximum number of unique source hosts
• Maximum new connections per host / per second(s) (TCP only)

If you want those hard limits to prevent unlimited surfing, maybe you should check captive portal. No restriction for max. ips, but you can restrict it per time.

Title: Re: automatically block Intranet connections based on access behavior (19.4)
Post by: fiterzs on May 13, 2019, 08:47:02 am

Thanks HBC

yes. That's what I want to do

The advanced part of the rule set, the manual is not very clear. But sometimes these features are useful.