topic Rate limit port forwards in General Topics https://live.paloaltonetworks.com/t5/general-topics/rate-limit-port-forwards/m-p/28915#M21133 <HTML><HEAD></HEAD><BODY><P>Hey guys,</P><P></P><P>Some of the iptables servers I'm replacing with Palo Alto firewall provide port forwards to RDP servers. In order to prevent abuse, they were rate limited, such that a single IP can only connect a few times before being blacklisted for a few minutes.</P><P></P><P>This functionality existed within IP tables - is there a way to replicate this within a PA-200?</P></BODY></HTML> Mon, 30 Jun 2014 06:16:55 GMT daraco 2014-06-30T06:16:55Z Rate limit port forwards https://live.paloaltonetworks.com/t5/general-topics/rate-limit-port-forwards/m-p/28915#M21133 <HTML><HEAD></HEAD><BODY><P>Hey guys,</P><P></P><P>Some of the iptables servers I'm replacing with Palo Alto firewall provide port forwards to RDP servers. In order to prevent abuse, they were rate limited, such that a single IP can only connect a few times before being blacklisted for a few minutes.</P><P></P><P>This functionality existed within IP tables - is there a way to replicate this within a PA-200?</P></BODY></HTML> Mon, 30 Jun 2014 06:16:55 GMT https://live.paloaltonetworks.com/t5/general-topics/rate-limit-port-forwards/m-p/28915#M21133 daraco 2014-06-30T06:16:55Z Re: Rate limit port forwards https://live.paloaltonetworks.com/t5/general-topics/rate-limit-port-forwards/m-p/28916#M21134 <HTML><HEAD></HEAD><BODY><P>Hello Daraco,</P><P></P><P>You may try a DOS protection profile <SPAN class="GINGER_SOFTWARE_mark"><SPAN class="GINGER_SOFTWARE_mark">( </SPAN></SPAN>GUI &gt; Profiles &gt; Security Profiles &gt; DOS) to rate <SPAN class="GINGER_SOFTWARE_mark">connection and block for a specific time interval.</SPAN></P><P><IMG alt="DOS-Protection.PNG" class="image-0 jive-image" src="https://live.paloaltonetworks.com/legacyfs/online/14191_DOS-Protection.PNG" style="height: auto;" /></P><P></P><P>Reference DOC<SPAN class="GINGER_SOFTWARE_mark"><SPAN class="GINGER_SOFTWARE_mark">:</SPAN></SPAN><A href="https://live.paloaltonetworks.com/docs/DOC-3094">Threat Prevention Deployment Tech Note</A></P><P></P><P>Thanks</P></BODY></HTML> Mon, 30 Jun 2014 06:44:37 GMT https://live.paloaltonetworks.com/t5/general-topics/rate-limit-port-forwards/m-p/28916#M21134 HULK 2014-06-30T06:44:37Z