Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should have per-client-IP and per-subnet connection limits #9

Open
hessu opened this issue Oct 9, 2012 · 0 comments
Open

Should have per-client-IP and per-subnet connection limits #9

hessu opened this issue Oct 9, 2012 · 0 comments
Labels
enhancement

Comments

@hessu
Copy link
Owner

hessu commented Oct 9, 2012

Currently a single misbehaving client can create hundreds or thousands of connections to the server and consume file descriptor & memory resources or simply fill the maxclients setting for the Listener.

Should implement a configurable limit of connections per client IP address (default to 10 or something), refuse new ones over the limit. Also, another limit per a configured prefix length (20 per /24 or something for IPv4, per /48 for IPv6).

nginx source code should have an example of a very efficient implementation.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hessu