Nginx WAF 限制并发访问

现在网站一般都采用user-waf→源站的访问模式,或者采用user→cdn-源站的模式,$remote_addr将获取到的IP是waf或者cdn的IP而不是真实的用户IP。$http_x_forwarded_for才是用户的真实IP地址。哪么相关的策略都应该针对$http_x_forwarded_for展开。

一、未使用WAF、CDN的情况下

文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/

二、使用WAF、CDN的情况下

文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/

三、其他方法

四、备注说明


文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/

参考文档:
1:http://www.bzfshop.net/article/176.html
2:https://zhangge.net/4879.html
3:https://tengine.taobao.org/nginx_docs/cn/docs/http/ngx_http_limit_conn_module.html
4:https://tengine.taobao.org/nginx_docs/cn/docs/http/ngx_http_limit_req_module.html
5:http://www.ttlsa.com/nginx/nginx-limited-connection-number-ngx_http_limit_conn_module-module/
6:http://www.ttlsa.com/nginx/nginx-limiting-the-number-of-requests-ngx_http_limit_req_module-module/文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/ 文 章 源 自 note.t4x.orgByrd's Blog-https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/

申明:除非注明Byrd's Blog内容均为原创,未经许可禁止转载!详情请阅读版权申明!

On this day in past years
June
28
 
Byrd
  • by Published onJune 28, 2019
  • 原文链接:https://note.t4x.org/environment/nginx-waf-restrict-concurrent-access/
匿名

Comment

Anonymous

Slide puzzle verification.