[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SAGE] Limiting outbound connections with a reverse proxy?

To: Marco Marongiu <brontolinux@xxxxxxxxx>, Brad Knowles <brad@xxxxxxxxxxxxxxxxx>
Subject: Re: [SAGE] Limiting outbound connections with a reverse proxy?
From: Brad Knowles <brad@xxxxxxxxxxxxxxxxx>
Date: Wed, 2 Jan 2008 21:02:22 -0600
Cc: SAGE mailing list <sage-members@xxxxxxxx>
In-reply-to: <477BE0B7.9040500@xxxxxxxxx>
References: <477B6A11.1030700@xxxxxxxxx> <p06240800c3a17070a90f@[192.168.1.101]> <477BE0B7.9040500@xxxxxxxxx>
Sender: owner-sage-members@xxxxxxxxxx

On 1/2/08, Marco Marongiu wrote:

 Therefore, iptables could be an option on the source machine, but on the
 target it wouldn´t. Nor ipfw would be on both.


Right, but you could also have firewall rules on the proxy server, too.

 Therefore, the proxy (or whatever it will be) needs to accept N
 connections per second, and dispatch them at a maximum rate of 10
 conn/sec, enqueing the exceeding ones until they can be dispatched,
 possibly using a FIFO policy.

That is a conundrum. I guess you could alwayswrite your own application-specific proxy forthis sort of thing.


--
Brad Knowles <brad@xxxxxxxxxxxxxxxxx>
LinkedIn Profile: <http://tinyurl.com/y8kpxu>

References:
- [SAGE] Limiting outbound connections with a reverse proxy?
  - From: Marco Marongiu
- Re: [SAGE] Limiting outbound connections with a reverse proxy?
  - From: Brad Knowles
- Re: [SAGE] Limiting outbound connections with a reverse proxy?
  - From: Marco Marongiu

Prev by Date: Re: [SAGE] Change control and patching for Linux
Next by Date: Re: [SAGE] choosing the proper max SMTP message size
Previous by thread: Re: [SAGE] Limiting outbound connections with a reverse proxy?
Next by thread: Re: [SAGE] Limiting outbound connections with a reverse proxy?
Index(es):
- Date
- Thread