Limit the Connections

Question

Hi  
&nbsp;  
&nbsp; we have Pool that contains five ssl servers  
&nbsp; I need to write an IRule to Limit the  
&nbsp; Connections from clients to servers to prevent DDoS and DoS attack 
&nbsp;  
&nbsp; Thank you

hoolio · Answer

Hi David, 
&nbsp;  
&nbsp; If you are okay with sending a TCP reset to clients who attempt to establish a connection with the VIP or pool members when they're over the limit, you could configure a connection limit on the VIP and/or individual pool members.   
&nbsp;  
&nbsp; Else, if you want to do application layer handling of HTTP, you can check the Codeshare (Click here) for some examples: 
&nbsp;  
&nbsp; high_performance_rate_limiting - This rule will limit the number of request to a particular vhost and uri to... 
&nbsp; RateLimit_HTTPRequest - Limits HTTP POST requests by user 
&nbsp; virtual_server_connection_limit_with_HTTP_response - This rule allows administrators to configure a maximum TCP connection limit... 
&nbsp; HTTPSessionLimit - Limits total concurrent HTTP sessions to a pre-defined threshhold, allowing those clients with a session cookie to continue  
&nbsp;  
&nbsp; Aaron

Forum Discussion

Limit the Connections

1 Reply

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

OWA File Upload URIs for WAF Bypass

F5 AWAF/ASM learning only from Trusted traffic?

irule execution error

Curl 7.10.5 < 8.12.0 Integer Overflow (CVE-2025-0725)

Show or List F5 XC Routes in the Web

Related Content

Limit Connections From Client

virtual server connection rate limit with tables

Virtual server connection limit with HTTP response

APM TCP connection limit K38157145

HTTP/1.1’s Limitations - and How F5 Has You Covered

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS