I want to limit the rate of requests to Confluence from any one IP address (I do not know the address ahead-of-time). We sometimes experience out-of-control applications that hit our wiki too much, negatively impacting response time for users. We would like to drop/discard/ignore excess requests.
Our wiki is not externally facing, so excess requests are always inadvertent rather than intentional.
Even if the excessive requests are unintentional, you need to treat it like a denial of service attack. There are multiple ways to handle this and some depends on your networking environment.
If the users are habitual, you might be able to look in your logs to get their ip address and stop them from performing the negative effecting requests.
You might be able to pay for a service for a few months to weed out those users.
If you think you need a longer term solution, then you should install denial of service software within your network.
If you just want to effect the user as it is happening you could change the ip router on the confluence machine to null route that ip address since your case is not a full blown denial of service attack.
The command to use is dependent on your environment, but logically it should look something like
route add -host <ipaddr> reject
More and more people are building their careers with Atlassian, and we want you to be at the front of this wave! Important Dates Start the Certification Prep Course by 2 April 2019 Take your e...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs