Menu
What's new
By:
Filters Better Search

Help to check firewall-start script

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Z

zyu4router

Occasional Visitor
I wrote the following script to limit possible bad designed apps (P2P) for using too many sessions causing network issues.

But it seemed not working after I tested. Please kindly help to see if there is anything wrong.

Thanks in advance!

===============================================
#!/bin/sh

RATE=10
MAXCONN=100

iptables -I FORWARD -i br0 -p tcp --syn -s 192.168.1.0/24 -m limit --limit $RATE/s -j DROP
iptables -I FORWARD -i br0 -p tcp --syn --dport 1024:49151 -s 192.168.1.0/24 -m connlimit --connlimit-above $MAXCONN -j DROP

exit 0
===============================================
 
Keep in mind that Torrents mostly uses UDP these days, not TCP. That might also be the case with whichever application you are trying to throttle.

You will also need to disable NAT acceleration to be able to make use of the FORWARD chain.
 
RMerlin said:
Keep in mind that Torrents mostly uses UDP these days, not TCP. That might also be the case with whichever application you are trying to throttle.

You will also need to disable NAT acceleration to be able to make use of the FORWARD chain.
Click to expand...

Thanks RMerlin for your prompt reply.

I am not worrying about the UDP session as the connection time out is quite short.

I will try to disable the NAT acceleration. thanks!!!
 
You must log in or register to reply here.

Similar threads

R
Script to detect backup wan and disable certain devices from internet access
Replies
0
Views
355
RandomUser777
R
NoBenefit
Does my iptables looks normal?
Replies
1
Views
661
ColinTaylor
C
R
One router, two segments desired.
Replies
4
Views
431
Rombo
R
G
VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN
Replies
4
Views
439
Grefyne
G
GShlomi
Sharing my DualWan with port forwarding and DDNS experience
Replies
0
Views
168
GShlomi
GShlomi
Similar threads
Thread starter Title Forum Replies Date
S Can anyone help me to check if my RT-AC86U is part of this latest ASUS debacle Asuswrt-Merlin 24
C Help about dual Gateway Asuswrt-Merlin 1
C Solved Need help with nat-start scripts Asuswrt-Merlin 3
G Need help with VPN Asuswrt-Merlin 2
P Help with traffic filtering Asuswrt-Merlin 0
C Need some help with a DHCP problem Asuswrt-Merlin 9
S Help Required AC68U (TM-AC1900) troubleshooting after power outage Asuswrt-Merlin 3
C Need help with GT-AXE11000 and DNS Director Asuswrt-Merlin 0
Spydawg need help with network loop. Asuswrt-Merlin 9
J Help - duckdns has started returning an IPv6 IP address Asuswrt-Merlin 1

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 760 (members: 28, guests: 732)
Top