Max new connections (max-src-conn-rate) for port forwarding rules

[qulobit]

Hello everyone

I have been using OPNsense for ~1 year and I am looking to rate limit some of the (tcp) open ports. I could do that easily for the ports that terminate at the router ("advanced" settings in edit rule screen > Max new connections), but I can't seem to find a way to do for rules associated with a port forward.

Reading https://forum.opnsense.org/index.php?topic=2097.msg6879#msg6879 suggests that we can't edit those associated rules, but is there any other way to enable max-src-conn-rate?

Thanks very much!

[Fright]

Hi
maybe you can try not to add the associated rule but create it yourself with the required parameters?)

[qulobit]

That worked. Thanks! I will change all the rules to manual.
BTW, shouldn't there be a better way to accomplish this?

Also, how do I know if I am bringing all the same settings to the new rules? Is there any way to see what is in the auto generated rules?

Thanks again!

[Fright]

glad it works)

Is there any way to see what is in the auto generated rules?

i think you can view "auto-rule" id in Firewall: Rules (click '?' sign after Description header) and search for this rule in Firewall: Diagnostics: Statistics -> Rules