Throttling / request rate limit for certain locations?

ravanhagen · May 24, 2025

Hi, is it possible to throttle (per client) requests for certain files or locations (for example wp-longin.php or xmlrpc.php) as a simple means to block basic brute force attacks?

I only found documentation on general throttling against ddos but not anything more specific. Thanks for any info

Cold-Egg · May 26, 2025

Maybe something like fail2ban and CrawdSec may help.

We added fail2ban to the ols1clk script a few days ago, and it's mainly to protect wp-login.php and xmlrpc.php from multiple POST requests. Feel free to adjust the fail2ban config to match your goal.

ravanhagen · May 26, 2025

Ok, thanks... As far as I remember, Fail2ban is IPv4 only, right? Or has that changed?

Cold-Egg · Tuesday at 1:00 AM

According to Fail2Ban GitHub note, IPv6 support is implemented in version 0.10

Throttling / request rate limit for certain locations?

ravanhagen

New Member

Cold-Egg

Administrator

ravanhagen

New Member

Cold-Egg

Administrator