Here’s the sample lines for connection limiting, where br0 is the internal LAN: > # only allow 25 connections per host total, only 5 # of which can be above port 1024 /usr/sbin/iptables -I FORWARD -i br0 -p tcp –syn –dport 1: -m connlimit –connlimit-above 25 -j REJECT /usr/