APLawrence.com -  Resources for Unix and Linux Systems, Bloggers and the self-employed

Setting hosts connection limits in Kerio control

© May 2019 Anthony Lawrence

Anonymous asks:

I'm running Kerio Control and am getting alerts about Connection Limits. How can I stop these?

Notice from Control

Actually, you don't want to stop these. They are an important part of protecting your network. It's possible that you may want to adjust some settings, but you certainly don't want to go overboard and disable this entirely!

The concept here is that most machines inside your network shouldn't have a lot of open connections to the outside world. The question is how many is reasonable and how many might indicate infection.

For example, a desktop machine might have a few dozen or maybe even a few hundred connections to internet websites. It probably shouldn't have thousands and if it does, it is very likely that machine has been compromised and is being used for something you wouldn't approve of.

On the other hand, a web or ftp server might very well have thousands of connections. You don't want Control interfering with that.

To that end, Control offers these settings:

Setting connection limits

"For a single peer" means the number of connections from one computer in your local network to one other site. For example, you have a browser open to aol.com. That's at least one connection, though it may be more because modern browsers prefetch links from pages you go to.

"For all peers" is the total number of connections from one computer to all other sites.

"New connections per minute" means what it says: if any computer exceeds that, it triggers this.

Triggers what?

Kerio Control blocks connections from infected hosts or peers. All connections to infected hosts and peers are allowed.

After reaching the connection limit, Kerio Control breaks other connections to/from the host and creates an entry in the warning log.

Setting hosts connection limits

Got something to add? Send me email.

(OLDER)    <- More Stuff -> (NEWER)    (NEWEST)   

Printer Friendly Version

-> Setting hosts connection limits in Kerio control

Inexpensive and informative Apple related e-books:

Take Control of Numbers

Photos: A Take Control Crash Course

Take Control of Parallels Desktop 12

Take Control of Upgrading to El Capitan

Are Your Bits Flipped?

More Articles by © Anthony Lawrence

Printer Friendly Version

Have you tried Searching this site?

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.

Contact us

Printer Friendly Version

The real problem is that programmers have spent far too much time worrying about efficiency in the wrong places and at the wrong times; premature optimization is the root of all evil (or at least most of it) in programming. (Donald Knuth)

Linux posts

Troubleshooting posts

This post tagged:



Kerio Info

Kerio Pricing

Kerio RSS Feed



Unix/Linux Consultants

Skills Tests

Unix/Linux Book Reviews

My Unix/Linux Troubleshooting Book

This site runs on Linode