Welcome! Log In Create A New Profile

Advanced

Removing limit_conn_zone limit_conn addr?

Posted by erniejw 
Removing limit_conn_zone limit_conn addr?
August 02, 2020 11:26PM
We are considering remove the following settings from the nginx.conf which uses the http_limit_conn_module:-

limit_conn_zone $binary_remote_addr zone=addr:10m;
limit_conn addr 10;

The nginx webserver hosts a modsecurity plugin and sits behind Cloudfront and AWS shield and a load balancer with additional custom defined intrusion detection. So we are taking care of DOS, BOT attack and rate related type of attacks.

We see these limiting settings now as redundant. Anyone see any reason not to remove these settings?
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 68
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready