Hi Igor,
You can reuse the examples from the blog and limit tracking to a single IP:
tcp-request connection track-sc1 src if { src a.b.c.d }
Baptiste
On Thu, May 8, 2014 at 5:57 PM, Igor <[email protected]> wrote:
> Hello every guru,
>
> I got a TCP frontend and a HTTP backend, recently I have a issue some
> users send too much queries to one URL, maybe it's malware or autobot.
> So is it possible to limit one source IP to access api.example.com
> request rate at 30 per hour? The other hosts like www.example.com,
> mail.example.com not limited by that.
>
> I refer to 1.5 doc and
> http://blog.haproxy.com/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/
> , can't find a clear way to accomplish.
>
> Thanks.
>
> Bests,
> -Igor
>
