We are considering remove the following settings from the nginx.conf which uses the http_limit_conn_module:-
limit_conn_zone $binary_remote_addr zone=addr:10m;
limit_conn addr 10;
The nginx webserver hosts a modsecurity plugin and sits behind Cloudfront and AWS shield and a load balancer with additional custom defined intrusion detection. So we are taking care of DOS, BOT attack and rate related type of attacks.
We see these limiting settings now as redundant. Anyone see any reason not to remove these settings?