two questions relating to the above 1. trying to use 'max-src-conn 1' to limit service to one connection per host (with overload table) but when i disconnect and re-reconnect i get blocked. should this state expire when correctly closed, allowing a second connection, or is the timeout needed?
2. is source-track required for the above? i can't decipher the relationship. current confusion is "does source-track turn 'max' into a per-IP match or simply allow the per-IP functions to operate?" nb: not sure the service is closing the connection correctly which may be causing the timeout issue.
