Limit TCP connections per IP address

[jared71]

Hello,

Does anyone know of a way to limit the number of simulanious TCP connections from a certain ip or range? I have an iPlanet webserver on a Solaris 8 box, and I have a user with an application that keeps firing off too many https sessions at once and bringing down my systems.

I don't thing tcp wrapers is what I am looking for, but have looed at something called xinetd.

Any imput or suggestions?

 

[gheist]

I dont know if I am correct - but blocking abusive IP addresses/netblocks helps, and surely - notifying abuse@theirdomain.com

 

[jared71]

This is a customer, so I can't block their IP, I want to add functionality to either the web server or the solaris box that limits http sessions to a designated number. Since they are opening up a neww session per POST (or order) I would like to restrick the nuber of session per IP address to a number such as 70.

thanks.

 

[gheist]

It is somewher in webservers config (I thin defaults are 8 for http 1.0 and 4 for http 1.1?) - I have last seen Netscape server a while ago - but it shoulld be able to to limit connections un per-address basis

if the problem is in socket count - there was a parameter in /etc/system which can be increased - ill find it later