Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 7798 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9 SG230 - Rate Limiting

Paul Mark Valenzuela1

Hi.

 

I have several web servers protected by a Shophos SG230. 

 

Is it possible to control rate of access on my web servers, for example 10 requests / seconds or 1 request for 100 ms.

I've been thru the WAF interface, QoS and all other places but can't find how to set this up.

 

Thanks,

Paul 



This thread was automatically locked due to age.
  • 0

    Hi Paul and welcome to the UTM Community!

    Maybe in QoS.  Do you want to limit combined access or accesses per connection?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    Hi Paul,

    We don't currently have rate limiting options specifically for protected servers. Please submit a vote for this feature request here

    We do have anti-DoS features available under Intrusion Prevention that allows you to set source and destination packet rates.

    Cheers,

    Karlos

    Karlos
    Community Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.
  • 0 in reply to Karlos

    Interesting suggestion, Karlos!

    Are you aware of any situation where this anti-flooding capability was used for something like Paul wants to do?

    Am I correct in assuming that 'Source' and 'Destination' refer to the source and destination in each packet?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob!

    I can't say that the anti-flooding would be able to achieve his goals specifically, but its the closest available feature to (if server performance and anti-DoS are the goals of wanting to be able to limit the connections). It will ensure DoS attacks are not carried out to any destination within the LAN.

    And yes, you're correct it refers to the source/destination ip of the packet.

    Cheers,

    Karlos

    Karlos
    Community Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.
  • 0 in reply to Karlos

    Do you have product under Sophos that can help me achieve this ?

    Would consider buying.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML