Want to subscribe to topics you're interested in?
Become a Member

Limit user connections per ip from Nginx or Csf?

Discussion in 'Nginx, PHP-FPM & MariaDB MySQL' started by pamamolf, Oct 13, 2014.

  1. pamamolf

    pamamolf Well-Known Member

    4,038
    426
    83
    May 31, 2014
    Ratings:
    +824
    Local Time:
    1:58 AM
    Nginx-1.25.x
    MariaDB 10.3.x
    Hi

    I am thinking to limit user connections on server per ip in case that someone run a siege benchmark on my server and maybe try to kill it (too many connections) or in general try to use many connections from a single ip but i am not sure which is the best way to do it ?

    Nginx level or Csf level?

    Nginx level will react faster as it will block or add it at wait stage but csf after a minute if the site is up :) will block the ip.....

    And what number to use for for a forum about?


    Thanks :)
     
  2. rdan

    rdan Well-Known Member

    5,432
    1,394
    113
    May 25, 2014
    Ratings:
    +2,180
    Local Time:
    7:58 AM
    Mainline
    10.2
  3. eva2000

    eva2000 Administrator Staff Member

    51,255
    11,900
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,374
    Local Time:
    9:58 AM
    Nginx 1.25.x
    MariaDB 10.x
  4. pamamolf

    pamamolf Well-Known Member

    4,038
    426
    83
    May 31, 2014
    Ratings:
    +824
    Local Time:
    1:58 AM
    Nginx-1.25.x
    MariaDB 10.3.x
    If i want to change the limit to 50 connections on :

    limit_conn limit_per_ip 50;

    do i have to change also this 16 value to 50?

    limit_conn_zone $binary_remote_addr zone=limit_per_ip:16m;
     
  5. eva2000

    eva2000 Administrator Staff Member

    51,255
    11,900
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,374
    Local Time:
    9:58 AM
    Nginx 1.25.x
    MariaDB 10.x