DDOS Protection - F5 LTM

Korai · ‎26-Aug-2020

Hi,

we wana apply DDOS Protection on F5 and wana limit the number on concurrent connections to virtual for protection. I can see that we have connection Limit and rate limit,

So I want 5000 concurrent maximum connection to virtual server what values should I configure, Is this below configurtation correct to limit the F5 to have maximum 5000 connection and drop If limit exceeds.

Connection Limit = 5000

Connection Rate Limit = 5000

Lidev · ‎26-Aug-2020

Hi Korai,

Your Connection Limit is correct to limit the concurrent connections to 5000 connections.

However, you Connection Rate Limit is too high. The Connection Rate Limit indicates the number of new connections accepted per second for the virtual server.

Check this link below for more details :

https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-13-1-0/25.h...

Regards

Korai · ‎26-Aug-2020

Thanks,

Yes this make sense to me but whats the creteria to set the connection rate limit, how we know how many connection per second we should allow.

Any value recomended by F5 for connection rate limit , we cant put any random numbers for connection rate limit as this might be some calculations right

Lidev · ‎26-Aug-2020

it's depends on many factor, (physical or virtual appliance, bandwith limitation, backend capacity..and so on)

if you have a support contract, open a ticket about this, F5 ingenieers maybe help you to set the right limitation.

DevCentral

DDOS Protection - F5 LTM

Sep 26th, 2023
MFA required on DevCentral

DevCentral

DDOS Protection - F5 LTM

Sep 26th, 2023MFA required on DevCentral

Sep 26th, 2023
MFA required on DevCentral