Skip to content

Latest commit

 

History

History

throttling

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
img
img
 
 
README.md
README.md
 
 
dashboard.json
dashboard.json
 
 
rules.drl
rules.drl
 
 
run.sh
run.sh
 
 
tear_down.sh
tear_down.sh
 
 

README.md

Throttling

Requirements

Metrics

demo-app-last-minute-rq-count-per-origin = floor(increase(demo_app_metric[1m]))

Other

  1. Demo application is deployed on node kube-worker-0
  2. Simple flask app is running on kube-worker-0 with properly changed target_url (demo-app svc ClusterIP)
  3. Add security group rule that allows inbound http from your device (preferably with /16 mask)

Description

In order to protect against DDOS attacks, we want to change security rules on our running instance to disable income traffic from potential attacker. To achieve this goal, we have to monitor requests per origin in given time period - that is why demo-app-metric was created.

Rule flow

  1. Check if requests per origin is high (more than 90 requests in last minute)
  2. Create security rules without subnet <origin_ip>.0/24
  3. Delete current security rule that included origin IP
  4. After given time, go back to previous configuration

Results

Security Rule changes

Before rule execution Before_rule_execution

After rule Execution After_rule_execution

Requests count

With added throttling rule With_rule_execution

Without throttling rule Without_rule_execution