more DoS prevention: add packet_limit option to apply a hard limit to downstream packets per session
This commit is contained in:
bodea
parent
ee333473db
commit
bb63cb9994
7 changed files with 79 additions and 17 deletions
|
|
@ -307,6 +307,13 @@ Keep all pages mapped by the l2tpns process in memory.
|
|||
Maximum number of host unreachable ICMP packets to send per second.
|
||||
</LI>
|
||||
|
||||
<LI><B>packet_limit</B> (int><BR>
|
||||
Maximum number of packets of downstream traffic to be handled each
|
||||
tenth of a second per session. If zero, no limit is applied (default:
|
||||
0). Intended as a DoS prevention mechanism and not a general
|
||||
throttling control (packets are dropped, not queued).
|
||||
</LI>
|
||||
|
||||
<LI><B>cluster_address</B> (ip address)<BR>
|
||||
Multicast cluster address (default: 239.192.13.13). See the section
|
||||
on <A HREF="#Clustering">Clustering</A> for more information.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue