Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I know it is possible to limit the maximum active connections to a HAProxy frontent. However, is it possible to somehow also limit number of concurrect connections coming from a single host? I would like further connections to be queued up.
Haproxy can block by source IP based on different criteria (which could be mixed together):
number or rate of HTTP or TCP connections.
Have a look at stick-tables (and use HAProxy 1.5).
Some examples here:
http://blog.exceliance.fr/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/
Cheers