Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Limiting rate of requests

Jason Friedman
Jason Friedman
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 13, 2014

I want to limit the rate of requests to Confluence from any one IP address (I do not know the address ahead-of-time).  We sometimes experience out-of-control applications that hit our wiki too much, negatively impacting response time for users.  We would like to drop/discard/ignore excess requests.

Our wiki is not externally facing, so excess requests are always inadvertent rather than intentional.

Answer
Watch
Like Be the first to like this
269 views

4 answers

1 accepted

3 votes
Answer accepted
Daniel Wester
Daniel Wester
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 14, 2014

You could just use nginx in front of it (or another proxy): http://nginx.org/en/docs/http/ngx_http_limit_req_module.html

View More Comments
Norman Abramovitz
Norman Abramovitz
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 14, 2014

Agree, that is another potential solution!

Like
Reply
1 vote
Norman Abramovitz
Norman Abramovitz
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 13, 2014

Even if the excessive requests are unintentional, you need to treat it like a denial of service attack.   There are multiple ways to handle this and some depends on your networking environment. 

If the users are habitual, you might be able to look in your logs to get their ip address and stop them from performing the negative effecting requests.  

You might be able to pay for a service for a few months to weed out those users.

If you think you need a longer term solution, then you should install denial of service software within your network.

If you just want to effect the user as it is happening you could change the ip router on the confluence machine  to null route that ip address since your case is not a full blown denial of service attack.

The command to use is dependent on your environment, but logically it should look something like

route add -host <ipaddr> reject

 

 

Reply
0 votes
Jason Friedman
Jason Friedman
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 13, 2014

Thank you, Norman, I edited my question to be more clear.

Reply
0 votes
Norman Abramovitz
Norman Abramovitz
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 13, 2014

Your question is too ambiguous. Are trying to solve your issue from receiving side or the sending side? Do you have any control (ie make modifications) to the code? Can you throw away the requests or must you queue the request for later processing?

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events