Hello Experts,
Our customer’s website has just been brought down by bots.bots website aware.
base32+src can look at src + url.
I am not good at this. I am hoping I can get some help to create the needed
config. Can I do the below config ;
# Begin DDOS-Protection-Config
# Monitor the number of request sent by an IP over a period of 10 seconds
stick-table type base32+src size 1m expire 10s store gpc0,http_req_rate(10s)
tcp-request connection track-sc1 src
# Refuses a new connection from an abuser
tcp-request content reject if { src_get_gpc0 gt 0 }
# Returns a 403 response for requests in an established connection
http-request deny if { src_get_gpc0 gt 0 }
I think this config is wrong. Any help or tips or sample config using
base32+src possible. Maybe a Link where someone posted a sample config using
base32+src. I have both port 80 & port 443 with port 80 rewrite to port 443.
I had some help from Willy about using base32+src which I understood in theory
but I am not good enough to convert that wonderful advise to a workable config.
Best regards,
; Yuan
