Get the most out of your Centmin Mod LEMP stack
Become a Member

Limit user connections per ip from Nginx or Csf?

Discussion in 'Nginx, PHP-FPM & MariaDB MySQL' started by pamamolf, Oct 13, 2014.

  1. pamamolf

    pamamolf Premium Member Premium Member

    4,063
    427
    83
    May 31, 2014
    Ratings:
    +830
    Local Time:
    10:28 AM
    Nginx-1.25.x
    MariaDB 10.3.x
    Hi

    I am thinking to limit user connections on server per ip in case that someone run a siege benchmark on my server and maybe try to kill it (too many connections) or in general try to use many connections from a single ip but i am not sure which is the best way to do it ?

    Nginx level or Csf level?

    Nginx level will react faster as it will block or add it at wait stage but csf after a minute if the site is up :) will block the ip.....

    And what number to use for for a forum about?

    Thanks :)

     
  2. rdan

    rdan Well-Known Member

    5,434
    1,395
    113
    May 25, 2014
    Ratings:
    +2,181
    Local Time:
    3:28 PM
    Mainline
    10.2
  3. eva2000

    eva2000 Administrator Staff Member

    52,243
    12,001
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,504
    Local Time:
    5:28 PM
    Nginx 1.25.x
    MariaDB 10.x
  4. pamamolf

    pamamolf Premium Member Premium Member

    4,063
    427
    83
    May 31, 2014
    Ratings:
    +830
    Local Time:
    10:28 AM
    Nginx-1.25.x
    MariaDB 10.3.x
    If i want to change the limit to 50 connections on :

    limit_conn limit_per_ip 50;

    do i have to change also this 16 value to 50?

    limit_conn_zone $binary_remote_addr zone=limit_per_ip:16m;
     
  5. eva2000

    eva2000 Administrator Staff Member

    52,243
    12,001
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,504
    Local Time:
    5:28 PM
    Nginx 1.25.x
    MariaDB 10.x