Firewall: How-to match if connection reaches X Mbit/s?
Posted: Sat Mar 09, 2019 8:00 pm
Hello folks.
I wanted to know if there is a way to setup a firewall rule to add a destination ip address to a list if he is receiving more than 20 Mbit/s on TCP.
I tested this rule, but i can't get it working:
I wanted to know if there is a way to setup a firewall rule to add a destination ip address to a list if he is receiving more than 20 Mbit/s on TCP.
I tested this rule, but i can't get it working:
Code: Select all
add action=add-dst-to-address-list address-list=HighTrafficIP address-list-timeout=10m chain=forward connection-state=established,related,new in-interface=Meo limit=20M,1M:bit protocol=tcp