Was this article helpful?
@Geg, thanks I'm probably being thick but what we're looking for is to be able to rate limit all requests but for certain ip addresses these not to be ratelimited (such as internal IP's). Looks as though this is specifying a list of IP's to rate limit?
Also I'm not fully understanding the purpose of the ratelimiteduseragents and why we would use it.
Wouldn't we need an additional data group too sec_whitelist? Also what does this do.
Came across this as our partner was asking £11K to create an i-rule to limit the requests to a service 10 requests in a 2 minute window from each source ip address. If I get this working it will go down very well.
As you can guess I've very limited experience of i-rules.
Any help much appreciated.
Many Thanks