Add connection rate limiting.
Tinc now strictly limits incoming connections from the same host to 1 per second. For incoming connections from multiple hosts short bursts of incoming connections are allowed (by default 100), but on average also only 1 connection per second is allowed. When an incoming connection exceeds the limit, tinc will keep the connection in a tarpit; the connection will be kept open but it is ignored completely. Only one connection is in a tarpit at a time to limit the number of useless open connections.
This commit is contained in:
Guus Sliepen
parent
2eba793305
commit
24e3ec863e
6 changed files with 62 additions and 2 deletions
|
|
@ -1296,6 +1296,7 @@ const var_t variables[] = {
|
|||
{"KeyExpire", VAR_SERVER},
|
||||
{"LocalDiscovery", VAR_SERVER},
|
||||
{"MACExpire", VAR_SERVER},
|
||||
{"MaxConnectionBurst", VAR_SERVER},
|
||||
{"MaxOutputBufferSize", VAR_SERVER},
|
||||
{"MaxTimeout", VAR_SERVER},
|
||||
{"Mode", VAR_SERVER | VAR_SAFE},
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue