nginx rate limiting only on "GET /" requests ?

I don't need to rate limit the entire site, I just want to rate limit this exact request:

GET / HTTP/1.1

Why? Because this is the only request used in DDOS against my site.

I'm reading up on NGINX Rate Limiting but I haven't figured out how to define this exact request yet

Any help would be much appreciated

 

I figured out the location for that exact query is defined like so:

Code:

location = / {

}

so I got this in global above everything else:

Code:

limit_req_zone $binary_remote_addr zone=mylimit:10m rate=30r/m;

and then I have this above my main location / block :

Code:

location = / {

#limit_req zone=mylimit;

}

Seems to work fine, any recommendations or corrections?

 

Thanks, this is what I'm using now:

Code:

limit_req_zone $binary_remote_addr zone=homepage:10m rate=20r/m;
limit_req_zone $binary_remote_addr zone=domain:10m rate=200r/m;

location = / {

limit_req zone=homepage burst=40;

}

location / {
limit_req zone=gh burst=400 nodelay;
# all the normal stuff
}

I got ddosed twice since setting this up and it blocked both of them, it had no effect, yay

 

been ddosed 8 times times now since implementing this and they got rate limited every time and had no effect. I also have a neat cloudflare shell script I'm working on to automate under attack mode under high CPU load, will share when it's finished

 

Correct, I'm still a nginx noob so I'm figuring it out one piece at a time