github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-08-20 13:24:25 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

rate limit new definition

Browse source
This commit is contained in:
myvesta 2020-05-11 20:21:12 +02:00 committed by GitHub
commit f05ff062d8
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/deb/for-download/tools/rate-limit-tpl/install_rate_limit_tpl.sh
View file

@ -3,10 +3,10 @@
# This installer will install hosting-firewall.tpl (nginx template) that will: # This installer will install hosting-firewall.tpl (nginx template) that will:
# + allow 1 http request per second per IP address (sent to your server, more precisely to your PHP-FPM) # + allow 1 http request per second per IP address (sent to your server, more precisely to your PHP-FPM)
# + allow 2 parallel http connections per IP address (sent to your PHP-FPM) # + allow 2 parallel http connections per IP address (sent to your PHP-FPM)
# + make burst (queue) for 7 additional http requests in the same second, but it will processed each request each second (so this will handle natural peaks that CMS can generate to itself) # + make burst (queue) for 7 additional http requests in the same second, first 3 will be processed immediately, 4 others will processed each request each second (so this will handle natural peaks that CMS can generate to itself)
# + if client fills allowed queue , additional requests will be denied # + if client fills allowed queue, additional requests will be denied
# #
# Generally, this nginx template will prevent bad bots to run hundreds parallel http requests against your site, which will probably cause denial-of-service on your server # Generally, this nginx template will prevent bad bots to run hundreds parallel http requests against your site, which will probably cause denial-of-service on your server.
grepc=$(grep -c 'limit_conn_zone' /etc/nginx/nginx.conf) grepc=$(grep -c 'limit_conn_zone' /etc/nginx/nginx.conf)
if [ "$grepc" -eq 0 ]; then if [ "$grepc" -eq 0 ]; then