Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 7811 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9 SG230 - Rate Limiting

Paul Mark Valenzuela1

Hi.

 

I have several web servers protected by a Shophos SG230. 

 

Is it possible to control rate of access on my web servers, for example 10 requests / seconds or 1 request for 100 ms.

I've been thru the WAF interface, QoS and all other places but can't find how to set this up.

 

Thanks,

Paul 



This thread was automatically locked due to age.
Parents
  • 0

    Hi Paul,

    We don't currently have rate limiting options specifically for protected servers. Please submit a vote for this feature request here

    We do have anti-DoS features available under Intrusion Prevention that allows you to set source and destination packet rates.

    Cheers,

    Karlos

Reply
  • 0

    Hi Paul,

    We don't currently have rate limiting options specifically for protected servers. Please submit a vote for this feature request here

    We do have anti-DoS features available under Intrusion Prevention that allows you to set source and destination packet rates.

    Cheers,

    Karlos

Children
  • 0 in reply to Karlos

    Interesting suggestion, Karlos!

    Are you aware of any situation where this anti-flooding capability was used for something like Paul wants to do?

    Am I correct in assuming that 'Source' and 'Destination' refer to the source and destination in each packet?

    Cheers - Bob

  • 0 in reply to BAlfson

    Hi Bob!

    I can't say that the anti-flooding would be able to achieve his goals specifically, but its the closest available feature to (if server performance and anti-DoS are the goals of wanting to be able to limit the connections). It will ensure DoS attacks are not carried out to any destination within the LAN.

    And yes, you're correct it refers to the source/destination ip of the packet.

    Cheers,

    Karlos

  • 0 in reply to Karlos

    Do you have product under Sophos that can help me achieve this ?

    Would consider buying.