• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

Feature request: Add rate limiting to tunnels. Denial of Service (DoS) issue.

Started by AntiLiberal, July 07, 2024, 09:02:00 PM

Previous topic - Next topic

AntiLiberal

I would like to be able to rate limit the downstream connection. Limiting it to 20,000 packets per second or 5MB/sec would work for me. A way of remotely disabling the tunnel, such as by sending a special UDP packet out to the server should also work. That would have to be automated with a script.

Someone is doing a DoS attack which overloads my connection and I cannot connect to anything, even to configure the tunnel.

Unfortunately I have to turn off my tunnel for the time being or my connection could be down for as long as an hour at random times.

pmf026

I think it's something you should do yourself. Treat "he-ipv6" (or whatever name you assigned for it) like another external wan interface. Need rate-limit? Set it up, I mean it's not ISP's responsibility and if your router can't handle it, invest in more powerful router maybe?