automatically block Intranet connections based on access behavior (19.4)

Started by fiterzs, May 09, 2019, 03:05:34 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 09, 2019, 03:05:34 AM

Hello everyone
I would like to set some rules in the Intranet. The number of external connections per IP cannot be more than 1000. If it exceeds 1000, the Internet access will be automatically blocked.
May 09, 2019, 06:02:40 AM #1
I did not find a way to block the number of internal links beyond the number
May 10, 2019, 04:33:04 AM #2
Is there a way to do this?
thanks
May 10, 2019, 09:03:53 AM #3
Quote from: fiterzs on May 10, 2019, 04:33:04 AM
Is there a way to do this?
thanks

Hard to say. Your question sounds like: People may access maximum 1000 ips (per day/hour/lifetime?) and then internet is shut down forever. This will not work.

You can set rate limits in firewall rules for:

  • Maximum number of established connections per host (TCP only)
  • Maximum number of unique source hosts
  • Maximum new connections per host / per second(s) (TCP only)

If you want those hard limits to prevent unlimited surfing, maybe you should check captive portal. No restriction for max. ips, but you can restrict it per time.
Intel(R) Xeon(R) Silver 4116 CPU @ 2.10GHz (24 cores)
256 GB RAM, 300GB RAID1, 3x4 10G Chelsio T540-CO-SR
May 13, 2019, 08:47:02 AM #4
Thanks HBC

yes. That's what I want to do

The advanced part of the rule set, the manual is not very clear. But sometimes these features are useful.
Print
Go Up Pages1
User actions