Learn about Centmin Mod LEMP Stack today
Register Now

Limit user connections per ip from Nginx or Csf?

Discussion in 'Nginx, PHP-FPM & MariaDB MySQL' started by pamamolf, Oct 13, 2014.

  1. pamamolf

    pamamolf Premium Member Premium Member

    4,077
    427
    83
    May 31, 2014
    Ratings:
    +833
    Local Time:
    8:09 PM
    Nginx-1.25.x
    MariaDB 10.3.x
    Hi

    I am thinking to limit user connections on server per ip in case that someone run a siege benchmark on my server and maybe try to kill it (too many connections) or in general try to use many connections from a single ip but i am not sure which is the best way to do it ?

    Nginx level or Csf level?

    Nginx level will react faster as it will block or add it at wait stage but csf after a minute if the site is up :) will block the ip.....

    And what number to use for for a forum about?

    Thanks :)

     
  2. rdan

    rdan Well-Known Member

    5,444
    1,407
    113
    May 25, 2014
    Ratings:
    +2,200
    Local Time:
    2:09 AM
    Mainline
    10.2
  3. eva2000

    eva2000 Administrator Staff Member

    54,316
    12,198
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,763
    Local Time:
    4:09 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  4. pamamolf

    pamamolf Premium Member Premium Member

    4,077
    427
    83
    May 31, 2014
    Ratings:
    +833
    Local Time:
    8:09 PM
    Nginx-1.25.x
    MariaDB 10.3.x
    If i want to change the limit to 50 connections on :

    limit_conn limit_per_ip 50;

    do i have to change also this 16 value to 50?

    limit_conn_zone $binary_remote_addr zone=limit_per_ip:16m;
     
  5. eva2000

    eva2000 Administrator Staff Member

    54,316
    12,198
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,763
    Local Time:
    4:09 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+