Job Description
We have a publicly available API which offers a free and a paid tier to our users. The API gets bombarded with daily requests which are currently blocked via a custom Cloudflare worker. The worker keeps track of all requests, saves their IP in a Cloudflare KV and if too many requests are fired, it blocks them.
While this approach works, it hits hard on our KV and causes too many requests. We are looking for a 2-tier solution, which
1) Keeps track of normal daily requests and blocks them like it is right now. The worker/KV could stay as is.
2) Permanently blocks IP addresses forever, if they exceed a certain threshold over a set timeframe. These are obviously bots or ddos attacks.
Tier 2 should block requests before they hit our worker. We are currently adding malicious IP's to the security rules. But the IP list gets longer and longer and I guess this is not a scalable approach, even if automated.
Please propose a possible solution in a few sentences.
Contract duratio...
While this approach works, it hits hard on our KV and causes too many requests. We are looking for a 2-tier solution, which
1) Keeps track of normal daily requests and blocks them like it is right now. The worker/KV could stay as is.
2) Permanently blocks IP addresses forever, if they exceed a certain threshold over a set timeframe. These are obviously bots or ddos attacks.
Tier 2 should block requests before they hit our worker. We are currently adding malicious IP's to the security rules. But the IP list gets longer and longer and I guess this is not a scalable approach, even if automated.
Please propose a possible solution in a few sentences.
Contract duratio...
Ready to Apply?
Take the next step in your AI career. Submit your application to Confidential today.
Submit Application