Use Proxy-Action with Connection Rate(per second)
Hello,
I want to know if is possible to do this
I have my web page mydomain.com and I have many queries but I want to enable connection rate(per second) with value 20 when the users access to mydomain.com/query/license if the users access to another query example mydomain.com/query/support or other, connection rate will not affect with value of 20
can i do this with two proxy policies one to match the url with connection rate and other allowing all web site without connection rate?
Best Answer
-
No, that will not work.
The 1st policy which matches a packet is used, and no later policy will be checked.
The checks to match a packet are source IP, dest IP, protocol & dest port.
So only the 1st incoming HTTP policy would be checked.Also, the connection rate limit is not per user - it is total connections per second for the policy.
From the docs:
"To improve network security, you can create a limit on a policy so that it only filters a specified number of connections per second. If additional connections are attempted, the traffic is denied and a log message is generated."5
Answers
thank you