Skip to content
/ ratelimit Public

CoreDNS plugin that enables response rate limiting to mitigate DNS attacks.

License

MIT license
5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

milgradesec/ratelimit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

323 Commits

.github

.github

 
 

.gitignore

.gitignore

 
 

.golangci.yml

.golangci.yml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

metrics.go

metrics.go

 
 

ratelimit.go

ratelimit.go

 
 

ratelimit_test.go

ratelimit_test.go

 
 

setup.go

setup.go

 
 

setup_test.go

setup_test.go

 
 

Repository files navigation

ratelimit

CI CodeQL codecov Go Report Card Go Reference GitHub

Description

The ratelimit plugin enables response rate limiting to mitigate DNS attacks.

Syntax

ratelimit LIMIT
  • LIMIT the amount of responses-per-second allowed from an IP.
ratelimit LIMIT {
    whitelist [IPs...]
}
  • whitelist the list of IPs exluded from rate limit.

Metrics

If monitoring is enabled (via the prometheus plugin) then the following metric are exported:

  • coredns_ratelimit_dropped_request_total{server} - count per server

Examples

ratelimit 50 {
    whitelist 127.0.0.1 192.168.1.25 10.240.1.1
}

About

CoreDNS plugin that enables response rate limiting to mitigate DNS attacks.

Topics

go dns golang coredns ratelimit coredns-plugin

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages