No description
Find a file
2023-03-11 18:50:34 +01:00
defaults Add more configuration files and templates 2023-03-11 18:18:27 +01:00
files Fix spacing 2023-03-11 18:50:34 +01:00
handlers nginx: Aktualisiere Rolle. Dient nun zur allgemeinen Einrichtung von Nginx 2022-06-19 20:30:17 +02:00
meta Add more configuration files and templates 2023-03-11 18:18:27 +01:00
tasks Fix conditionals and file name 2023-03-11 18:30:29 +01:00
templates Fix conditionals and file name 2023-03-11 18:30:29 +01:00
README.md Change limit defaults 2023-03-11 18:48:54 +01:00

Nginx

Role to install Nginx.

Variables

Name Default Notes
nginx_port 80 Listen port for Nginx
nginx_package_name nginx-full Name of the Debian package to install
nginx_bad_client_ip List of IP address to deny access
nginx_type gateway for a Reverse Proxy, standalone for a frontend webserver, backend for a backend webserver (behind a Reverse Proxy)
dhparam_path /etc/ssl/private/dhparam.pem Path to dhparam file
dhparam_size 4096 Size (in bits) of the generated DH-params

Rate limiting

Limiting the Request Rate

You can use Nginx' Rate Limiting to slow | down brute force attacks. The following zones are available:

Zone name Filter Limit
req_ip_one IP address 10r/s
req_ip_two IP address 1r/s
req_server_one Domain 10r/s
req_server_two Domain 1r/s

Limiting the Number of Connections

You can also limit the number of connection:

Zone name Filter Limit
con_ip_one IP address No default limit