IDP and HAProxy

Started by blackout, March 21, 2021, 08:48:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 21, 2021, 08:48:47 PM
Hi,

is there a way that these components work together?
Today there was a massive brute force attak to my nextcloud and there was no other way as close the https port. In front of my nextcloud there is OPNsense with HAProxy as reverse proxy with SSL offloading.
So no encrypted traffic.

Regards

March 22, 2021, 09:31:57 PM #1
You could apply rate-limiting in HAProxy to block the bruteforce attempts, something like:
https://www.loadbalancer.org/blog/simple-denial-of-service-dos-attack-mitigation-using-haproxy-2/
2x 23.7 VMs & CARP, 4x 2.1GHz, 8GB
Cisco L3 switch, ESXi, VDS, vmxnet3
DoT, Chrony, HAProxy + NAXSI, Suricata
VPN: IPSec, OpenVPN, Wireguard
MultiWAN: Fiber 500/500Mbit dual stack + 4G failover

--
Available for private support.
Did my answer help you? Feel free to click [applaud] to the left
Print
Go Up Pages1
User actions