Hi, Baptiste What I mean is tracking every single IP and only limit it to access specified host name at a limited rate :)
Bests, -Igor Bests, -Igor On Fri, May 9, 2014 at 3:36 PM, Baptiste <[email protected]> wrote: > Hi Igor, > > You can reuse the examples from the blog and limit tracking to a single IP: > tcp-request connection track-sc1 src if { src a.b.c.d } > > Baptiste > > > On Thu, May 8, 2014 at 5:57 PM, Igor <[email protected]> wrote: >> Hello every guru, >> >> I got a TCP frontend and a HTTP backend, recently I have a issue some >> users send too much queries to one URL, maybe it's malware or autobot. >> So is it possible to limit one source IP to access api.example.com >> request rate at 30 per hour? The other hosts like www.example.com, >> mail.example.com not limited by that. >> >> I refer to 1.5 doc and >> http://blog.haproxy.com/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/ >> , can't find a clear way to accomplish. >> >> Thanks. >> >> Bests, >> -Igor >>
