The post details a real-world incident where a company faced DDoS attacks and the steps they took to mitigate them. Initially, rate limiting with ingress-nginx failed due to overwhelming traffic. Shifting to Cloudflare, they enabled various rules including Custom, Managed, and Rate Limiting rules to better handle the attacks. They also faced issues like blocking their own IPs and had to optimize settings repeatedly to effectively defend against these attacks. Key insights include the necessity of logging and regularly reviewing requests to avoid false positives.
Table of contents
DetectionRate limiting from the ingress-controllerCloudflare to the rescueBonusConclusionSort: