limit-req and greedy UAs

Richard Stanway r1ch+nginx at teamliquid.net
Fri Sep 9 13:00:36 UTC 2016


You can put limit_req in a location, for example do not limit static files
and only limit expensive backend hits, or use two different thresholds.

On Fri, Sep 9, 2016 at 3:39 AM, <lists at lazygranch.com> wrote:

> ‎Since this limit is per IP, is the scenario you stated really a problem?
> Only that IP is effected. Or as is often the case, did I miss something?
>
> http://nginx.org/en/docs/http/ngx_http_limit_req_module.html
>
>   Original Message
> From: Grant
> Sent: Thursday, September 8, 2016 6:24 PM
> To: nginx at nginx.org
> Reply To: nginx at nginx.org
> Subject: limit-req and greedy UAs
>
> Has anyone considered the problem of legitimate UAs which request a
> series of files which don't necessarily exist when they access your
> site? Requests for files like robots.txt, sitemap.xml,
> crossdomain.xml, apple-touch-icon.png, etc could quickly cause the UA
> to exceed the limit-req burst value. What is the right way to deal
> with this?
>
> - Grant
>
> _______________________________________________
> nginx mailing list
> nginx at nginx.org
> http://mailman.nginx.org/mailman/listinfo/nginx
>
> _______________________________________________
> nginx mailing list
> nginx at nginx.org
> http://mailman.nginx.org/mailman/listinfo/nginx
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20160909/1b2bd11f/attachment.html>


More information about the nginx mailing list