close
The Wayback Machine - https://web.archive.org/web/20200627030724/https://github.com/microsoft/reverse-proxy/issues/16
Skip to content

/ reverse-proxy

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add connection filtering (DoS prevention) middleware to the sample #16

Open
anurse opened this issue Mar 12, 2020 · 0 comments
Open

Add connection filtering (DoS prevention) middleware to the sample #16

anurse opened this issue Mar 12, 2020 · 0 comments
Labels
Type: Enhancement
Projects
Planning
Milestone
1.0.0

Comments

@anurse
Copy link
Contributor

@anurse anurse commented Mar 12, 2020
edited by karelz

We expect several features to be add-ins that plug in as connection middleware. Add a connection middleware to the sample in this repo.

Here's one example from Http2:
https://github.com/dotnet/aspnetcore/blob/09bb7b4ca5a4fbde0283c294c35fac8b485c0074/src/Servers/Kestrel/samples/Http2SampleApp/Program.cs#L41-L54

Other things we expect to need to plug into here:

  • Sniff SNI and rate limit
  • Rate limit SSL handshakes by IP

We don't have to write those components as part of this task, just demonstrate that a connection middleware has access to the necessary inputs and controls (e.g. IPs, sniffing the data stream, drop connections, etc.).

Specifically, this involves being able to filter connections based on information contained in the ClientHello TLS frame. Examples include:

  • Cipher Suite selection
  • Protocol Version
  • Server Name Indication (SNI)
  • Application-Level Protocol Negotiation (ALPN; used for HTTP/2 and HTTP/3)
@anurse anurse added this to Backlog in Planning Apr 8, 2020
@anurse anurse moved this from Unscheduled to Future in Planning Apr 13, 2020
@anurse anurse moved this from Future to 1.0 Backlog in Planning Apr 13, 2020
@anurse anurse added this to the 1.0.0 milestone Apr 23, 2020
@karelz karelz mentioned this issue May 7, 2020
Closed
@karelz karelz changed the title Add connection filtering middleware to the sample Add connection filtering (DoS prevention) middleware to the sample Jun 15, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Type: Enhancement
Projects
Planning
  
1.0 Backlog
Milestone
  1.0.0
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
1 participant
@anurse
You can’t perform that action at this time.