snapshot_web dynamic rules

author Peter Palfrader <peter@palfrader.org>

Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)

committer Peter Palfrader <peter@palfrader.org>

Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)
author Peter Palfrader <peter@palfrader.org>
Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)
committer Peter Palfrader <peter@palfrader.org>
Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)
diff --git a/modules/apache2/manifests/dynamic.pp b/modules/apache2/manifests/dynamic.pp

index 75b3fb9..5df01a1 100644 (file)
--- a/modules/apache2/manifests/dynamic.pp
+++ b/modules/apache2/manifests/dynamic.pp
@@ -60,8 +60,8 @@ class apache2::dynamic {
                         description => 'http subchain',
                         chain       => 'http',
                         rule        => '
-                                       mod recent name HTTPDOS update seconds 1800 jump log_or_drop;
-                                       mod hashlimit hashlimit-name HTTPDOS hashlimit-mode srcip hashlimit-burst 30 hashlimit 20/minute jump ACCEPT;
+                                       mod recent name HTTPDOS update seconds 900 jump log_or_drop;
+                                       mod hashlimit hashlimit-name HTTPDOS hashlimit-mode srcip hashlimit-burst 200 hashlimit 30/minute jump ACCEPT;
                                         mod recent name HTTPDOS set jump log_or_drop'
                 }
         } else {
author	Peter Palfrader <peter@palfrader.org>
	Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Fri, 1 Jun 2018 16:38:35 +0000 (18:38 +0200)