Iptables: limit mdns packet per second per ip

cyanat

7/28/24, 9:20 AM

I have a network with a lot of MDNS (UDP 5353) traffic on it.

To avoid overloading my server, I limit globally the MDNS packets accepted by iptables with this rules:

iptables -A INPUT -i eth2 -p udp --dport 5353 -m limit --limit 100/second -j ACCEPT

Now I would like to set this limite per source IP, in oder to accept 5 MDNS packet per second for a single source ip.

However, I'm not sure on how to do that... With connlimit maybe? But because I'm working on UDP packet (without connection), I don't think its the answer here...

0 + 0

iptables

udp

mdns

connlimit

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Iptables: limit mdns packet per second per ip

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.