Code: Select all
curl -O https://c.myvestacp.com/tools/rate-limit-tpl/install_rate_limit_tpl.sh
bash install_rate_limit_tpl.shHow to install rate-limit nginx templates
-
myVesta
- Site Admin
- Posts: 819
- Joined: Fri Jun 19, 2020 9:59 am
- Has thanked: 4 times
- Been thanked: 6 times
This installer will install hosting-firewall.tpl (nginx template) that will:
There are also 3 additional templates, with larger limit values (for example: 2 req/sec, 14 allowed requests in queue, 7 burst, 8 parallel connections).
- allow 1 http request per second per IP address (sent to your server, more precisely to your PHP-FPM)
- allow 2 parallel http connections per IP address (sent to your PHP-FPM)
- allow burst for 7 additional http requests (they will enter queue), first 3 will be processed immediately, 4 others will processed each request each second (so this will handle natural peaks that CMS can generate to itself)
- if client fills allowed queue, additional requests will be denied
There are also 3 additional templates, with larger limit values (for example: 2 req/sec, 14 allowed requests in queue, 7 burst, 8 parallel connections).
-
myVesta
- Site Admin
- Posts: 819
- Joined: Fri Jun 19, 2020 9:59 am
- Has thanked: 4 times
- Been thanked: 6 times
Code: Select all
apt-get install sysvinit-utils
echo "PATH=$PATH:/usr/sbin" >> ~/.bashrc
source ~/.bashrcThank you for the quick reply.
static files are not limited in anyway (good to know this) - i didn't realize that earlier. just checked once again and found issue with another plugin on site.
regarding whitelist ip, need to set something, so it doesn't limit apache/php served pages for specific users ( even though rate limit nginx template applied for domain ).
can't we add tcp ip under firewall on myvestacp, so those ip address wont have rate limit applied ?
static files are not limited in anyway (good to know this) - i didn't realize that earlier. just checked once again and found issue with another plugin on site.
regarding whitelist ip, need to set something, so it doesn't limit apache/php served pages for specific users ( even though rate limit nginx template applied for domain ).
can't we add tcp ip under firewall on myvestacp, so those ip address wont have rate limit applied ?
-
myVesta
- Site Admin
- Posts: 819
- Joined: Fri Jun 19, 2020 9:59 am
- Has thanked: 4 times
- Been thanked: 6 times
nope, because this is a limit on nginx layer - https://github.com/myvesta/vesta/blob/m ... pl#L10-L11sparkzara wrote: ↑Mon Dec 20, 2021 8:18 pm Thank you for the quick reply.
static files are not limited in anyway (good to know this) - i didn't realize that earlier. just checked once again and found issue with another plugin on site.
regarding whitelist ip, need to set something, so it doesn't limit apache/php served pages for specific users ( even though rate limit nginx template applied for domain ).
can't we add tcp ip under firewall on myvestacp, so those ip address wont have rate limit applied ?
probably there is a way to exclude those lines for desired IP, but i'm sincerely not sure how.
someone should go deeply in nginx syntax to understand how to do it.
Thank you for the suggestion.
if block idea should help resolve it now.
if block idea should help resolve it now.
myVesta wrote: ↑Mon Dec 20, 2021 8:41 pmnope, because this is a limit on nginx layer - https://github.com/myvesta/vesta/blob/m ... pl#L10-L11sparkzara wrote: ↑Mon Dec 20, 2021 8:18 pm Thank you for the quick reply.
static files are not limited in anyway (good to know this) - i didn't realize that earlier. just checked once again and found issue with another plugin on site.
regarding whitelist ip, need to set something, so it doesn't limit apache/php served pages for specific users ( even though rate limit nginx template applied for domain ).
can't we add tcp ip under firewall on myvestacp, so those ip address wont have rate limit applied ?
probably there is a way to exclude those lines for desired IP, but i'm sincerely not sure how.
someone should go deeply in nginx syntax to understand how to do it.