NGINX Rate Limiting

superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
How NGINX rate limiting works? Is rate limiting can use in security purposes? I wonder if it can protect against DDoS attacks? How they do that? I don't exactly know how this rate limiting works and i've wanted to know did this configures itself just to protect from attackers. Is this only for security or there are another uses of it?
 
VirtuBox

VirtuBox

Well-known member
Registered
Joined
May 3, 2016
Messages
1,622
Points
83
Rate limiting is useful to avoid bruteforce or to mitigate DoS attacks. Here some examples of nginx rate limiter configuration

DoS Mitigation
Bash: 
    #Simple DOS mitigation
    ##Max c/s by ip
    limit_conn_zone $binary_remote_addr zone=limit_per_ip:10m;
    limit_conn limit_per_ip 80;

    ##Max rq/s by ip
    limit_req_zone $binary_remote_addr zone=allips:10m rate=400r/s;
    limit_req zone=allips burst=400 nodelay;
Avoid bruteforce on wp-login.php page :
Bash: 
    ## limit requests 1/second
    limit_req_status 403;
    limit_req_zone $binary_remote_addr zone=one:10m rate=1r/s;

location = /wp-login.php {
  limit_req zone=one burst=1 nodelay;
  include fastcgi_params;
  fastcgi_pass php;
}
 
superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
superman2727
So the main role of Rate Limits is to mitigate DDoS attacks? It is more focused on security breaches and avoidance of online attackers? Am i saying it right?
 
VirtuBox

VirtuBox

Well-known member
Registered
Joined
May 3, 2016
Messages
1,622
Points
83
VirtuBox
It can be used to mitigate DoS (Denial of Service attack ) , not DDoS (Distributed Denial of Service attack) because in most of case DDoS isn't only flooding the web server, so nginx cannot protect anything.
There are a lot of other possible usage of Nginx rate limiting , but bruteforce protection and DoS mitigation are probably the most used.
But it doesn't protect against security breaches, it limit only the ability to use basic attack like bruteforce.
 
superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
superman2727
Oops, I find it wrong. I thought you are saying that rate limiting is all about mitigating DDoS. Now I'm getting into it. NGINX rate limiting is focus more on DoS and bruteforce but it doesn't fully stop the attack from bruteforce. Cheers!
 
You must log in or register to reply here.
Older Threads
superman2727
Load Balancing IP
Replies
6
Views
3,863
superman2727
superman2727
Digitalocean on Windows 10
Replies
0
Views
1,521
superman2727
TheCompWiz
How to back up whole Linux server?
2
Replies
31
Views
12,918
Internet-Buff
HostColor
CLOUD-based SSD WEB HOSTING w/ Fault-Tolerant Storage - from $4.99/mo
Replies
0
Views
1,304
HostColor
superman2727
Quick Heal or Kaspersky
Replies
8
Views
3,645
superman2727
Newer Threads
Lost93
Buying Bitcoin with Paypal? Does anyone have experience?
Replies
4
Views
1,979
JesusdazaR
Lost93
Upgrade WHMCS 6 to WHMCS 7?
Replies
2
Views
1,488
Nixtree
amelia88
What attracts you to a website?
2 3
Replies
52
Views
12,340
JTexan
superman2727
What is Shared Hosting?
2
Replies
22
Views
10,230
Chris Worner
CaygriWEB
I leave trello for mybb!
Replies
4
Views
1,841
CaygriWEB
Latest Threads
cancan
Save an incredible 90% off! The Best HostPapa Deal so Far: Unlimited SSL, 50 GB NVMe, 24/7 support
Replies
0
Views
27
cancan
M
How to Choose the Best Web Hosting Provider for a New Website ??
Replies
0
Views
28
marcellosallas
J
Jtti: What are some common misconceptions about firewall rules?
Replies
0
Views
125
jtti
Mvv758
Hello
Replies
1
Views
79
AlbaHost
D
Help Needed with Setting Up Cloudflare R2 for Object Storage
Replies
0
Views
100
dilshanking
Recommended Threads
arindamb
WTS Buy Cheap Facebook Likes from seomarts.com
Replies
0
Views
2,334
arindamb
racksandcloud
HOT New Intel Xeon Silver and platinum Processors available now
Replies
5
Views
3,291
racksandcloud
lkovnih226
Squeeze page builder?
Replies
4
Views
3,077
onlinestorehelp
JackOAT
Hey all, new here
Replies
3
Views
1,343
Alex Thompson
CyberAlchemist
What business would you start with $1,500?
Replies
5
Views
4,153
DHB Web
Similar Threads
David Beroff
Difference between Nodejs vs Nginx?
Replies
1
Views
1,020
Dr. McKay
BlueLeaf
How to Enable TLS 1.3 on Windows, Limux, Mac, Apache & NGINX
Replies
8
Views
2,562
sarahalexa010
Harry P
How To Install Linux, Nginx, MySQL, PHP (LEMP) stack On CentOS 7 ?
2
Replies
22
Views
3,222
MooseLucifer
Kaz Wolfe
Installing Nginx on DirectAdmin
Replies
0
Views
826
Kaz Wolfe
StackArcVPS
Migrate Wordpress site from Apache to Nginx?
Replies
16
Views
11,579
well-web

Latest postsNew threads

Latest Hosting OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • cpanel
  • dedicated
  • free
  • hello
  • hosting
  • hosting services
  • marketing
  • offers
  • seo
  • server
  • services
  • vps
  • web
  • web hosting
  • website
  • wordpress
    • Top