Learn about Centmin Mod LEMP Stack today
Register Now

Limit user connections per ip from Nginx or Csf?

Discussion in 'Nginx, PHP-FPM & MariaDB MySQL' started by pamamolf, Oct 13, 2014.

  1. pamamolf

    pamamolf Premium Member Premium Member

    3,984
    413
    83
    May 31, 2014
    Ratings:
    +801
    Local Time:
    6:08 AM
    Nginx-1.17.x
    MariaDB 10.3.x
    Hi

    I am thinking to limit user connections on server per ip in case that someone run a siege benchmark on my server and maybe try to kill it (too many connections) or in general try to use many connections from a single ip but i am not sure which is the best way to do it ?


    Nginx level or Csf level?

    Nginx level will react faster as it will block or add it at wait stage but csf after a minute if the site is up :) will block the ip.....

    And what number to use for for a forum about?

    Thanks :)
     
  2. rdan

    rdan Premium Member Premium Member

    5,240
    1,307
    113
    May 25, 2014
    Ratings:
    +2,014
    Local Time:
    11:08 AM
    Mainline
    10.2
  3. eva2000

    eva2000 Administrator Staff Member

    48,527
    11,117
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,310
    Local Time:
    1:08 PM
    Nginx 1.21.x
    MariaDB 10.x
  4. pamamolf

    pamamolf Premium Member Premium Member

    3,984
    413
    83
    May 31, 2014
    Ratings:
    +801
    Local Time:
    6:08 AM
    Nginx-1.17.x
    MariaDB 10.3.x
    If i want to change the limit to 50 connections on :

    limit_conn limit_per_ip 50;

    do i have to change also this 16 value to 50?

    limit_conn_zone $binary_remote_addr zone=limit_per_ip:16m;
     
  5. eva2000

    eva2000 Administrator Staff Member

    48,527
    11,117
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,310
    Local Time:
    1:08 PM
    Nginx 1.21.x
    MariaDB 10.x