i want to find a way to block or rate limit users from query a specific url more than 20 times/min.
Example: slot machine that i know normal users can spin (click on the spin url) only 15 times/min
i want to be able to block/rate limit users from click on the spin url more than 20 times/min
lets take as example that the url is https://abc.com/casino/spin
and i want to make sure each realclient ip can spin ( click on the spin url https://abc.com/casino/spin 20/min
i didn't find any option to implement this under the DOS profile, .
In a DoS profile, this is configured under
Application Security - TPS-based Detection
Otherwise, there are several threads here on DevCentral that provide irules for rate-limiting:
iRule - URI/Referer Rate limit per minute
Project BAIU - Basic to Advanced IP & UID Rate Limiter
Plenty of places to start.
I dont know bro, srsly