#!/bin/sh

LIMIT=40

COMMAND='netstat -n | egrep '\''tcp.*[0-9]*\.[0-9]*\.[0-9]*\.[0-9]*:80[ ]*[0-9]*\.[0-9]*\.[0-9]*\.[0-9]*:[0-9]*[ ]*ESTABLISHED'\'' | awk -F'\''[ \t:]+'\'' '\''{ print $6 }'\'''

eval $COMMAND | sort | uniq -c | while read numconn ip
do
  if [ $numconn -gt $LIMIT ]
  then
    echo "Te veel connecties van $ip ($numconn)"
	RESPONSE=`iptables -n -L |egrep "$ip"`
	if [ "$RESPONSE" = "" ] ; then
      /sbin/iptables -I INPUT -s $ip -j DROP
	fi
  fi
done