kaffa/XDP-Firewall
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Disable source IP-based rate limiting by default and add note to README.

Browse Source
This commit is contained in:
Christian Deacon
2025-03-25 11:06:54 -04:00
parent fd013b4b4a
commit 2c9312c574
2 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/common/config.h
View File

@@ -37,7 +37,7 @@
// NOTE - If you're receiving a high volume of spoofed packets, it is recommended you disable rate limiting below.
// This is because the PPS/BPS counters are updated for every packet and with a spoofed attack, the LRU map will recycle a lot of entries resulting in additional load on the CPU.
// Enable source IP rate limiting.
#define ENABLE_RL_IP
//#define ENABLE_RL_IP
// Enable source flow rate limiting.
#define ENABLE_RL_FLOW