On Mon, Nov 04, 2013 at 07:01:56PM +0100, Maria WIktoria wrote: > Hi guys, > > I was just working on something very similar, however a bit more complex than > you're considering: > > For given requests: > GET /file&id=123&id2=1 > GET /file&id=476&id2=1 > GET /file&id=111&id2=1 > GET /file&id=111&id2=1 > GET /file&id=111&id2=2 > GET /file&id=476&id2=2 > > I would like to reject the connection if pair (id,id2) repeats more than X > times. Parameters in url can be in any order and it would be perfect to > create a whitelist to some of them. I've tried to use two track-sc* > directives with a condition, but it does not work at all. Is it possible to > do it with ulrp_reg in acl an therefore count the requests? Is it even > possible with any other methods? And what if we have 3 parameters to match? :)
I think we'll have to wait for the per-request variables in order to do this, otherwise we'll end up with a large number of combinations of sample fetches, which is not a good thing at all. Regards, Willy
