diff options
author | pierrepomes <pierre.pomes@interface-tech.com> | 2009-11-16 16:43:50 -0500 |
---|---|---|
committer | pierrepomes <pierre.pomes@interface-tech.com> | 2009-11-16 16:43:50 -0500 |
commit | 26dd6a541d0e6d3fac351e5dd8fcc18894a1095a (patch) | |
tree | 7ba2efea60986af1db394c8245dceb0933111066 /usr/local/www/firewall_rules_edit.php | |
parent | 6593dae66735f668fb169cdbbf88ef9c1aa9241c (diff) | |
download | pfsense-26dd6a541d0e6d3fac351e5dd8fcc18894a1095a.zip pfsense-26dd6a541d0e6d3fac351e5dd8fcc18894a1095a.tar.gz |
Add support for 'max-src-conn' PF feature, to limit the maximum number of established connections per host
Diffstat (limited to 'usr/local/www/firewall_rules_edit.php')
-rwxr-xr-x | usr/local/www/firewall_rules_edit.php | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/usr/local/www/firewall_rules_edit.php b/usr/local/www/firewall_rules_edit.php index 834916a..27eb08d 100755 --- a/usr/local/www/firewall_rules_edit.php +++ b/usr/local/www/firewall_rules_edit.php @@ -131,6 +131,7 @@ if (isset($id) && $a_filter[$id]) { /* advanced */ $pconfig['max-src-nodes'] = $a_filter[$id]['max-src-nodes']; + $pconfig['max-src-conn'] = $a_filter[$id]['max-src-conn']; $pconfig['max-src-states'] = $a_filter[$id]['max-src-states']; $pconfig['statetype'] = $a_filter[$id]['statetype']; $pconfig['statetimeout'] = $a_filter[$id]['statetimeout']; @@ -379,6 +380,7 @@ if ($_POST) { else unset($filterent['allowopts']); $filterent['max-src-nodes'] = $_POST['max-src-nodes']; + $filterent['max-src-conn'] = $_POST['max-src-conn']; $filterent['max-src-states'] = $_POST['max-src-states']; $filterent['statetimeout'] = $_POST['statetimeout']; $filterent['statetype'] = $_POST['statetype']; @@ -905,6 +907,7 @@ include("head.inc"); <br /><span class="vexpl"><?=gettext("You can match packet on a mark placed before on another rule.")?> </span> <p> <input name="max-src-nodes" id="max-src-nodes" value="<?php echo $pconfig['max-src-nodes'] ?>"><br> Simultaneous client connection limit<p> + <input name="max-src-conn" id="max-src-conn" value="<?php echo $pconfig['max-src-conn'] ?>"><br> Maximum established TCP connections per host<p> <input name="max-src-states" id="max-src-states" value="<?php echo $pconfig['max-src-states'] ?>"><br> Maximum state entries per host<p> <input name="max-src-conn-rate" id="max-src-conn-rate" value="<?php echo $pconfig['max-src-conn-rate'] ?>"> / <select name="max-src-conn-rates" id="max-src-conn-rates"> |