NGINX Rate Limiting

superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
How NGINX rate limiting works? Is rate limiting can use in security purposes? I wonder if it can protect against DDoS attacks? How they do that? I don't exactly know how this rate limiting works and i've wanted to know did this configures itself just to protect from attackers. Is this only for security or there are another uses of it?
 
VirtuBox

VirtuBox

Well-known member
Registered
Joined
May 3, 2016
Messages
1,622
Points
83
Rate limiting is useful to avoid bruteforce or to mitigate DoS attacks. Here some examples of nginx rate limiter configuration

DoS Mitigation
Bash: 
    #Simple DOS mitigation
    ##Max c/s by ip
    limit_conn_zone $binary_remote_addr zone=limit_per_ip:10m;
    limit_conn limit_per_ip 80;

    ##Max rq/s by ip
    limit_req_zone $binary_remote_addr zone=allips:10m rate=400r/s;
    limit_req zone=allips burst=400 nodelay;
Avoid bruteforce on wp-login.php page :
Bash: 
    ## limit requests 1/second
    limit_req_status 403;
    limit_req_zone $binary_remote_addr zone=one:10m rate=1r/s;

location = /wp-login.php {
  limit_req zone=one burst=1 nodelay;
  include fastcgi_params;
  fastcgi_pass php;
}
 
superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
superman2727
So the main role of Rate Limits is to mitigate DDoS attacks? It is more focused on security breaches and avoidance of online attackers? Am i saying it right?
 
VirtuBox

VirtuBox

Well-known member
Registered
Joined
May 3, 2016
Messages
1,622
Points
83
VirtuBox
It can be used to mitigate DoS (Denial of Service attack ) , not DDoS (Distributed Denial of Service attack) because in most of case DDoS isn't only flooding the web server, so nginx cannot protect anything.
There are a lot of other possible usage of Nginx rate limiting , but bruteforce protection and DoS mitigation are probably the most used.
But it doesn't protect against security breaches, it limit only the ability to use basic attack like bruteforce.
 
superman2727

superman2727

Well-known member
Registered
Joined
Apr 24, 2018
Messages
227
Points
18
superman2727
Oops, I find it wrong. I thought you are saying that rate limiting is all about mitigating DDoS. Now I'm getting into it. NGINX rate limiting is focus more on DoS and bruteforce but it doesn't fully stop the attack from bruteforce. Cheers!
 
You must log in or register to reply here.
Older Threads
superman2727
Load Balancing IP
Replies
6
Views
3,307
superman2727
superman2727
Digitalocean on Windows 10
Replies
0
Views
1,303
superman2727
TheCompWiz
How to back up whole Linux server?
2
Replies
31
Views
11,210
Internet-Buff
HostColor
CLOUD-based SSD WEB HOSTING w/ Fault-Tolerant Storage - from $4.99/mo
Replies
0
Views
1,158
HostColor
superman2727
Quick Heal or Kaspersky
Replies
8
Views
3,113
superman2727
Newer Threads
Lost93
Buying Bitcoin with Paypal? Does anyone have experience?
Replies
4
Views
1,697
JesusdazaR
Lost93
Upgrade WHMCS 6 to WHMCS 7?
Replies
2
Views
1,332
Nixtree
amelia88
What attracts you to a website?
2 3
Replies
52
Views
10,465
JTexan
superman2727
What is Shared Hosting?
2
Replies
22
Views
8,836
Chris Worner
CaygriWEB
I leave trello for mybb!
Replies
4
Views
1,572
CaygriWEB
Latest Threads
J
Jtti April promotion, 40% off on Hong Kong cluster servers/US cluster servers, minimum monthly payment starts at $218.6
Replies
0
Views
93
jtti
DemoTiger
How plans of big giants affect web hosting providers like you.
Replies
1
Views
190
BlueLeaf
M
Mobile App
Replies
0
Views
248
masterkind
AlpineHost
Trouble with Stripe webhook endpoint
Replies
1
Views
343
AlbaHost
viseo
Anyone for free WordPress hosting?
Replies
2
Views
246
BlueLeaf
Recommended Threads
l3ta
Alien Babble Review Requested
2
Replies
25
Views
8,763
OnaDavney
J
WTS Online chat software offering live Assistance & online support
Replies
2
Views
2,950
romivendour
Life Sayings
Openstack control panel?
Replies
5
Views
2,524
VirtuBox
agungwah
WTS Blog Post PR4, HQ & Aged Site $5/post
Replies
5
Views
3,026
itrafficsupplier
ITMDB
Does something like this work for SEO purposes, or would it just be a small traffic source?
Replies
1
Views
1,550
Miguelito203
Similar Threads
David Beroff
Difference between Nodejs vs Nginx?
Replies
1
Views
517
Dr. McKay
BlueLeaf
How to Enable TLS 1.3 on Windows, Limux, Mac, Apache & NGINX
Replies
5
Views
831
David Beroff
Harry P
How To Install Linux, Nginx, MySQL, PHP (LEMP) stack On CentOS 7 ?
2
Replies
22
Views
1,990
MooseLucifer
Kaz Wolfe
Installing Nginx on DirectAdmin
Replies
0
Views
532
Kaz Wolfe
StackArcVPS
Migrate Wordpress site from Apache to Nginx?
Replies
16
Views
10,366
well-web

Latest postsNew threads

Latest Hosting OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • cpanel
  • dedicated
  • domain
  • free
  • hosting
  • hosting services
  • marketing
  • offers
  • seo
  • server
  • services
  • vps
  • web
  • web hosting
  • website
  • wordpress
    • Top