<br><br><div class="gmail_quote">2010/11/6 malte <span dir="ltr"><<a href="mailto:nginx-forum@nginx.us">nginx-forum@nginx.us</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im">> Maybe I could add extra variable like this:<br>
> if ($limit_access_deny) {<br>
> add_header Location <a href="http://xxxx:81/" target="_blank">http://xxxx:81/</a>;<br>
> return 302;<br>
> }<br>
<br>
</div>Would work nicely.<br>
<div class="im"><br>
> I think it's good to divide the determination from<br>
> the Nginx. It's hard<br>
> to determine the IP by single Nginx whether is<br>
> good or bad. Actually we<br>
> have 20+ reverse proxy Nginx servers in the front.<br>
> Each Nginx doesn't<br>
> known others status. In our DDOS attack, the<br>
> bad-IP's request rate is a<br>
> little higher than the normal request.<br>
><br>
> We decide to collect the log together and analyze<br>
> it. I don't know the<br>
> payload of log collection. Maybe it's too high. We<br>
> have not done the<br>
> performance test yet. Or we should do log analysis<br>
> distributed in each<br>
> server and then collect the results together.<br>
<br>
</div>Hms. In my set up, I have 3 machines each running nginx. They all have<br>
their own public IP, and I simply let DNS round robin in the requests to<br>
them. When I was hit, all machines were hit simultaneously, but the<br>
individual bots attacking each targeted one machine only.<br>
I take it you have some sort of load balancer in front that distributes<br>
your incoming traffic differently from me?<br></blockquote><div>Yes£¬we use LVS in front of Nginx as the load banlancer.</div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<br>
Posted at Nginx Forum: <a href="http://forum.nginx.org/read.php?2,147105,148026#msg-148026" target="_blank">http://forum.nginx.org/read.php?2,147105,148026#msg-148026</a><br>
<div><div></div><div class="h5"><br>
<br>
_______________________________________________<br>
nginx mailing list<br>
<a href="mailto:nginx@nginx.org">nginx@nginx.org</a><br>
<a href="http://nginx.org/mailman/listinfo/nginx" target="_blank">http://nginx.org/mailman/listinfo/nginx</a><br>
</div></div></blockquote></div><br>