Possible to set "whitelisted ips" in ratelimiting #36442
Labels
area/http_filter
area/ratelimit
question
Questions that are neither investigations, bugs, nor enhancements
Comments
zetaab
added
enhancement
|
I think a "composite" filter could help here. You could wrap the enforcement in a conditional filter that limits the application of the enforcement filter. |
kyessenov
added
question
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Title: Set ratelimiting to all cidrs with exceptions
Description:
I have usecase that I should add ratelimiting to all addresses (0.0.0.0/0) EXCEPT few "whitelisted ips". As I see it, it is quite common use case that people want to set rate limits to everything except few internal api ips (whitelist services that should work always, no matter what).
Relevant Links:
https://www.envoyproxy.io/docs/envoy/latest/api-v3/config/route/v3/route_components.proto#envoy-v3-api-msg-config-route-v3-ratelimit-action
currently envoy does not support exceptions to the
remote_addressmatcher. But it could have "not logic"?The text was updated successfully, but these errors were encountered: