From e6566bafeb101c397ec6a7590de763efb4e18a2c Mon Sep 17 00:00:00 2001
From: Christoph <ckubu@oopen.de>
Date: Thu, 4 Apr 2024 18:57:36 +0200
Subject: [PATCH] Some changes in per IP Connection Limit.

---
 conf/default_settings.conf | 2 +-
 ip6t-firewall-server       | 5 +++++
 ipt-firewall-server        | 5 +++++
 3 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/conf/default_settings.conf b/conf/default_settings.conf
index f1259c9..bb1039f 100644
--- a/conf/default_settings.conf
+++ b/conf/default_settings.conf
@@ -4,7 +4,7 @@
 # --- Default Parameter / Options
 # -------------
 
-per_IP_connection_limit=111
+default_per_IP_connection_limit=111
 
 
 # -------------
diff --git a/ip6t-firewall-server b/ip6t-firewall-server
index 4abbdaf..ec59103 100755
--- a/ip6t-firewall-server
+++ b/ip6t-firewall-server
@@ -814,6 +814,11 @@ fi
 
 echononl "\tLimit connections per source IP"
 if $limit_connections_per_source_IP ; then
+
+   if ! is_number $per_IP_connection_limit ; then
+      per_IP_connection_limit=$default_per_IP_connection_limit
+   fi
+
    if $log_rejected || $log_all ; then
       $ip6t -A INPUT -p tcp -m connlimit --connlimit-above $per_IP_connection_limit -j $LOG_TARGET $tag_log_prefix "$log_prefix CONN limit per IP: "
    fi
diff --git a/ipt-firewall-server b/ipt-firewall-server
index 822b1b1..e9d4b12 100755
--- a/ipt-firewall-server
+++ b/ipt-firewall-server
@@ -967,6 +967,11 @@ fi
 
 echononl "\tLimit connections per source IP"
 if $limit_connections_per_source_IP ; then
+
+   if ! is_number $per_IP_connection_limit ; then
+      per_IP_connection_limit=$default_per_IP_connection_limit
+   fi
+
    if $log_rejected || $log_all ; then
       $ipt -A INPUT -p tcp -m connlimit --connlimit-above $per_IP_connection_limit -j $LOG_TARGET $tag_log_prefix "$log_prefix CONN limit per IP:"
    fi