Menu
What's new
By:
Filters Better Search

Session Limiting with IPTables

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

artizan

artizan

New Around Here
Just finished installing Merlin firmware on my router.

I want to limit a certain torrenter on my network, googling suggests I limit the TCP/UDP sessions in IPTables.
Since i'm rather new to all this custom firmware stuff, I found some code that might help me with this:
Code: 
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p tcp --syn -m connlimit --connlimit-above 350 -j DROP
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p ! tcp -m connlimit --connlimit-above 250 -j DROP
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p udp -m limit --limit 20/sec --limit-burst 30 j ACCEPT

I'm not sure where I need to put this code?
 
artizan said:
Just finished installing Merlin firmware on my router.

I want to limit a certain torrenter on my network, googling suggests I limit the TCP/UDP sessions in IPTables.
Since i'm rather new to all this custom firmware stuff, I found some code that might help me with this:
Code: 
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p tcp --syn -m connlimit --connlimit-above 350 -j DROP
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p ! tcp -m connlimit --connlimit-above 250 -j DROP
iptables -t filter -I FORWARD -s 192.168.1.0/24 -p udp -m limit --limit 20/sec --limit-burst 30 j ACCEPT

I'm not sure where I need to put this code?
Click to expand...

Well once you have fixed the syntax and manually entered via SSH/TELNET to prove that the rules do what you expect, then /jffs/scripts/firewall-start might be a good place for them.
 
thanks for your reply.
I'm not having much luck with asuswrt-merlin QoS or iptables to stop torrenters, does the QoS in this firmware not work or something?

I've done the usual QoS rules researched from this forum, set the upload to 70%, download to 95%, used a connlimit of only 50, but everytime the torrent program will cause the all of the clients including myself to stop accessing the net.
I made a several rules, performed restarts, nothing seems to work, i really want to try avoid configuring the client itself and have the router handle the work.

I will try Tomato for QoS and see how I go.
 
You must log in or register to reply here.

Similar threads

R
Script to detect backup wan and disable certain devices from internet access
Replies
0
Views
332
RandomUser777
R
NoBenefit
Does my iptables looks normal?
Replies
1
Views
627
ColinTaylor
C
H
Port Forwarding Over WireGuard Connection?
2
Replies
22
Views
2K
houmi
houmi
G
VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN
Replies
4
Views
400
Grefyne
G
R
One router, two segments desired.
Replies
4
Views
381
Rombo
R
Similar threads
Thread starter Title Forum Replies Date
R Prevent SSH Disconnect / Timeout around ~ 105-116 seconds from last activity on terminal session Asuswrt-Merlin 7
SkierInAvon Asus Merlin - iptables command (not working?) Asuswrt-Merlin 8
v.y.k iptables pkts & bytes numbers are too low on Merlin 3004.388 Asuswrt-Merlin 13
M iptables module rateest - loadbalancing split over Asuswrt-Merlin 0
A Entware iptables no chain/target/match and tcpdump problems Asuswrt-Merlin 3
Z wgclient-start with iptables nat rules after router reboot Asuswrt-Merlin 19
H Does VPN Director Use Routes or IPTables Rules To Route Clients Over a VPN Connection? Asuswrt-Merlin 5
H Does firewall-start Script Ever Run Twice With Same iptables Rules? Asuswrt-Merlin 13
L merlin default iptables. why are there strange logdrops for specific pattens and ips? Asuswrt-Merlin 3
NoBenefit Does my iptables looks normal? Asuswrt-Merlin 1

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 751 (members: 16, guests: 735)
Top