this post was submitted on 08 May 2025
1 points (100.0% liked)

Debian operating system

3310 readers
1 users here now

Debian is a free operating system (OS) for your computer. An operating system is the set of basic programs and utilities that make your computer run. Debian provides more than a pure OS: it comes with over 59000 packages, precompiled software bundled up in a nice format for easy installation on your machine.

founded 5 years ago
MODERATORS
cydork@lemmy.ml
1
nftables - progressive rate limiting (lemmy.pt)
submitted 1 month ago by Ninguem@lemmy.pt to c/debian@lemmy.ml
0 comments fedilink hide all child comments
 

I'd like to progressively rate limit ssh connections by 3 per minute, 12 an hour and 24 a day.

I have these rules that don't seem to be working:

tcp dport 22 ct state new limit rate over 24/day drop comment "24+ a day"
tcp dport 22 ct state new limit rate over 12/hour drop comment "12+ an hour"
tcp dport 22 ct state new limit rate over 3/minute drop comment "3+ a minute"
tcp dport 22 ct state new limit rate 3/minute accept comment "Good SSH"

I'm still stuck in debian 10.13, stock kernel 4.19.316-1 (2024-06-25) and nftables v0.9.0 (Fearless Fosdick).

sets are not yet available, as far as I know.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here