On Sat, 23 Feb 2019 3:09 pm Santos Das <[email protected]> wrote: > Hi, > > I have a requirement where I need to allow only certain request rate for a > given URL. > > Say /login can be accessed at the rate of 10 RPS. If I get 100 RPS, then > 10 should be allowed and 90 should be denied. > > Any help on how this can be achieved ? > > *I tried to use the sticky table, but once it blocks it blocks for ever. > Please advise.* > > > frontend api_gateway > bind 0.0.0.0:80 <http://0.0.0.0/> > mode http > option forwardfor > > default_backend nodes > > # Set up stick table to track request rates > stick-table type binary len 8 size 1m expire 10s store > http_req_rate(10s) > > # Track client by base32+src (Host header + URL path + src IP) > http-request track-sc0 base32+src > > # Check map file to get rate limit for path > http-request set-var(req.rate_limit) > path,map_beg(/etc/hapee-1.8/maps/rates.map) > > # Client's request rate is tracked > http-request set-var(req.request_rate) > base32+src,table_http_req_rate(api_gateway) > > # Subtract the current request rate from the limit > # If less than zero, set rate_abuse to true > acl rate_abuse var(req.rate_limit),sub(req.request_rate) lt 0 >
Shouldn't this be: acl rate_abuse var(req.rate_limit),sub(var(req.request_rate)) lt 0 > # Deny if rate abuse > http-request deny deny_status 429 if rate_abuse > > backend nodes > mode http > balance roundrobin > server echoprgm 10.37.9.30:11001 check > > > >
