Linux control packet size for specific IP address

linux iptables linux-networking tcp tc

I would like to get Linux tool/script to control packet size of specific IP or MAC. For example if IP reach 10 MB then DROP packages with IP tables. I have idea how to DROP, but I don't have idea how to control packet size for specific multiple IP address


You want to read man iptables-extensions and man ipset. You can use ipsets to track IP addresses (iptables with --add-set) along with a counter and a timeout. Then you make an iptables rule with -m set --match-set (read the docs) and --bytes-gt

Related

Many Postgresql process. how to handle them?
Alternative to Port 80 for http
Does gmail avoid from some emails even to be in spam box? [closed]
iRedMail: Going to spam when sending from Postfix to Hotmail and Can't use port 465
How would wipe the complete hard drive (besides the core OS its self) of Windows 2003?
DNS settings for domain controller with dual nics one facing internet directly and one to router
Options for non-virtualized network interface isolation? [closed]
Mysql showing some high spikes [closed]
How to block an Internal IP address talking to an external IP Address on Cisco ASA 5505 [closed]
At a high level, how are EC2 spot prices and availability determined after the update in late 2017?
ESXI single vSwitch with 2 physical NICS
Which company phone do you recommend? [closed]