On tor, 2008-05-29 at 23:30 +0800, Changying Li wrote:
> Hi. I am using squid 2.6 as my reverse proxy. Sometimes there are many
> many requests from same ip in a very shot period ( like 100 requests/
> second). is it possible to deny these ips dynamically ?
> I has written a script to check access log one time per minute in cron
> and add these ips into deny list. Is there a bettle way to do ?
the maxconn acl is a partial solution.
If that's not sufficient then shouldn't be very hard to add an acl type
that denies access if above a certain rate in requests/s or bytes...
There is counters for both in the internal client db..
Regards
Henrik
This archive was generated by hypermail 2.2.0 : Tue Aug 05 2008 - 01:05:14 MDT