How does web.maxRequestsPerSec work exactly?
I've been thinking about DoS on the protocol ports. Is quite easy to protect the API using something like Cloudflare. But how could I protect the device ports also?
Thanks!
It's only for the API, not for protocols.
Do you think it makes sense to protect device ports somehow?
There are already some protections. Most frame decoders have buffer size limits. Device identification has throttling.
Very cool! I'll take a look into the code to understand this better.
Thanks!
Anton,
if someone abuse a device port and the buffer gets full, doesn't it mean that positions of legit users will be lost? I'm thinking about running a haproxy in tcp mode to respond for the decice ports and control the traffic per IP. What do you think?
If you're thinking about DDoS, that has to be handled outside of the server. Is this a real problem?
Not really, I'm just thinking about options... Thanks anynway!
Hi folks!
How exactly does the
web.maxRequestsPerSecconfig work? Does it control the number of requests per second for each client IP? Does it work only for requests coming to the HTTP port? Does it protect the device protocol ports too?Thanks!