Website Migration Notice: SafePoint is now operated by CyberServal.Learn more →
DiscussionSLA
Sign inSign up

Http flood protection: accesses vs http requests on rate limiting

Published a year ago

# SafeLine WAF

Published a year ago

Aurobica

Updated a year ago

0

I would like to protect an application against HTTP Flood
I enabled Access Limiting under the Rate Limiting, and i did set

Duration 10
Access 1000
Action block
Block 30 min

Here is my question: does Safeline count 1000 http requests on my application, from the same IP within 10 seconds? Or does it count 1000 accesses?
An singe access to the application (in this case) is made by 80 to 100 requests, it is a wordpress website.
Can you please clarify my doubt?

profile_photo

Carrie-SafeLine

Admin

Updated a year ago

0

It counts 1000 http requests from the same IP within 10 seconds.

You can use Exclude Content-Type to exclude certain requests that don’t need to be counted.

Aurobica

Updated a year ago

0

During the 10 seconds time window, every http request pass through, even if there are 10.000 requestes?

profile_photo

Carrie-SafeLine

Updated a year ago

Correct

Related Posts
#
Webhook Response
#
Load Balancing to two upstream servers.
#
Adding the Ability to Create Users with LDAP/Active Directory
#
Access log viewer
#
Safari - Challenge Not Work