We’ve already set some Rate Limiting rules and those are working fine.
One of them is blocking IP for 1-minute if they reach a certain number of request in 1-minute.
Now the help I need is with DDOS attacks. As traffic comes from various countries and
I’ve blocked lot of countries IP where we don’t sell. These unwanted requests that reach our server aren’t blocked by our current rate limiting rules. When I looked closely, those requests doesn’t meet the threshold of rate limit rules thus these request weren’t blocked. The average session of these IPs’ are about 0.7 sec. or maybe around 1,2 seconds.
Question is how can we block these requests using rate limiting without disturbing actual buyers?
And what are other things we can implement of CloudFlare or sever settings to mitigatethese attacks?