Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Thank you, I actually tried to install 12.04 in the openvz panel and it was still on the same kernel, it's really odd, I've to talk with the company in order to solve this, however maybe you know some similar rule of iptables that limits connection in X port to 1 per ip? Doesn't really has to be iptables, can be ipchains, it's just that I only am used to iptables.
Sorry, I know nothing about networking. I had a look into my kernel options and here is something you could try instead though:
Code:
"connlimit" match support" (NETFILTER_XT_MATCH_CONNLIMIT)
CONFIG_NETFILTER_XT_MATCH_CONNLIMIT:
This match allows you to match against the number of parallel
connections to a server per client IP address (or address block).
Symbol: NETFILTER_XT_MATCH_CONNLIMIT [=m]
Type : tristate
Prompt: "connlimit" match support"
Defined at net/netfilter/Kconfig:636
Depends on: NET [=y] && INET [=y] && NETFILTER [=y] && NETFILTER_XTABLES [=m] && NF_CONNTRACK [=m] && NETFILTER_ADVANCED [=y]
Location:
-> Networking support (NET [=y])
-> Networking options
-> Network packet filtering framework (Netfilter) (NETFILTER [=y])
-> Core Netfilter Configuration
-> Netfilter Xtables support (required for ip_tables) (NETFILTER_XTABLES [=m])
Yes, that's actually a good start to go with, but.. this kernel is really very customized, lsmod = 0, no modules at all, so I hope that con_limit doesn't depend on any other modules, also there's no netfilter folder, I will try to see if it's okay to create it manually.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
