When combined and both enabled, what are the suggested values for CT_LIMIT & CONNLIMIT?
Which one should be higher?
CT_LIMIT seems to stop blocking IP with both enabled.
Search found 2 matches
- 11 Jan 2022, 23:27
- Forum: General Discussion (csf)
- Topic: Which rule should be triggered first CT_LIMIT/CONNLIMIT/PORTFLOOD?
- Replies: 1
- Views: 1830
- 09 Jan 2022, 21:18
- Forum: General Discussion (csf)
- Topic: Which rule should be triggered first CT_LIMIT/CONNLIMIT/PORTFLOOD?
- Replies: 1
- Views: 1830
Which rule should be triggered first CT_LIMIT/CONNLIMIT/PORTFLOOD?
In what order does CSF will be triggered if I have this config set: CT_LIMIT = "100" CT_INTERVAL = "10" CT_SKIP_TIME_WAIT = "1" CT_PORTS = "80,443" SYNFLOOD = "1" CONNLIMIT = "443;100,80;50" PORTFLOOD = "443;tcp;20;3,80;tcp;20;3" ...