That’s what I was leaning towards. I haven’t put it into production yet, just wanted to get someone else’s opinion if available. I wanted to know since there will be close to 100 ips in use, and wanted to either know if it’s per ip or not. I guess if not, then if I wanted a limited of 300 connections per ip, I guess I’d have to do a 300*100=30,000 for the classifier.
Such as on a Cisco you can do a connection limited on nat’d ips. So once ip won’t have p2p going crazy and effect others.