cancel
Showing results for 
Search instead for 
Did you mean: 

DDOS Protection - F5 LTM

Korai
Nimbostratus
Nimbostratus

Hi,

 

we wana apply DDOS Protection on F5 and wana limit the number on concurrent connections to virtual for protection. I can see that we have connection Limit and rate limit,

 

So I want 5000 concurrent maximum connection to virtual server what values should I configure, Is this below configurtation correct to limit the F5 to have maximum 5000 connection and drop If limit exceeds.

 

Connection Limit = 5000

Connection Rate Limit = 5000

 

 

3 REPLIES 3

Lidev
MVP
MVP

Hi Korai,

 

Your Connection Limit is correct to limit the concurrent connections to 5000 connections.

However, you Connection Rate Limit is too high. The Connection Rate Limit indicates the number of new connections accepted per second for the virtual server.

 

Check this link below for more details :

https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-13-1-0/25.h...

 

Regards

Korai
Nimbostratus
Nimbostratus

Thanks,

 

Yes this make sense to me but whats the creteria to set the connection rate limit, how we know how many connection per second we should allow.

 

Any value recomended by F5 for connection rate limit , we cant put any random numbers for connection rate limit as this might be some calculations right

 

 

Lidev
MVP
MVP

 it's depends on many factor, (physical or virtual appliance, bandwith limitation, backend capacity..and so on)

if you have a support contract, open a ticket about this, F5 ingenieers maybe help you to set the right limitation.