  
  • Virtuozzo 6.0


How to limit Packages per second (PPS) rate for container's incoming and outgoing connection?


Iptables rules on the node can be used to limit the PPS rate of inbound and outbound traffic using container's IP address e.g.:

# iptables -I FORWARD 1 -o eth0 -s -m limit --limit 100/sec -j ACCEPT
# iptables -I FORWARD 2 -o eth0 -s -j DROP
# iptables -I FORWARD 3 -i venet0 -d limit --limit 100/sec -j ACCEPT
# iptables -I FORWARD 4 -i venet0 -d -j DROP

NOTE: Save iptables rules in order to make them reboot persistent ("# service iptables save").

