Setting rate limits for public APIs on the management service
Describes the procedure for setting a rate limit for public APIs on the management service. Rate limits provide protection from DDoS (distributed denial of service) attacks.
Before you begin
These instructions assume you have the kubectl command-line tool installed. For more information, see https://kubernetes.io.
About this task
Rate limits can be set for public APIs on the management service. Rate limits on APIs help provide protection from DDoS (distributed denial of service) attacks. Without a rate limit, API calls from public APIs are unlimited.
The rate limit configuration requires that the header contains the actual client IP address. Any load balancer or proxy (for example, HAProxy) that is installed in front of the management service must be configured to pass the actual client IP address.
This procedure must be performed on a running API Connect deployment.
Rate limits are calculated as requests per seconds per client.
Note: If the rate limit has been reached on the management subsystem, the client will get an HTTP
error: 429 Too Many Requests
.