IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  Rate Limiting - Logging / statistics

    Posted Fri June 23, 2023 04:56 AM

    Dear All,

    We are using rate limit option / configuration and now would like to have some statistic about blocked login attempts.  I have found this https://www.ibm.com/docs/en/sva/9.0.6?topic=limiting-rate-request-log-entries , but didn't find any detailed information  a LOG entry.  

    So our goal to have a statistic like from this IP we blocked this user.   Is this somehow possible?

    Regards,



    ------------------------------
    Janos Laszlo Horvath
    ------------------------------


  • 2.  RE: Rate Limiting - Logging / statistics

    Posted Sun June 25, 2023 05:12 PM

    Janos,

     

    The rate limiting capability does not provide any out-of-the-box statistics which you could use.  About the only thing which you could do would be to ensure that the client IP address is included in the request log, and then perform some correlation of the entries in the request log, searching for a status code of '-1' (as per the documentation which you referenced).

     

    I hope that this helps.

     

    Scott A. Exton
    Senior Software Engineer
    Chief Programmer - IBM Security Verify Access
    IBM Master Inventor

    cid4122760825*<a href=image002.png@01D85F83.85516C50">

     

     

     




    Original Message


  • 3.  RE: Rate Limiting - Logging / statistics

    Posted Mon June 26, 2023 12:47 AM

    Hello Scott,

    Thanks for your reply. I will do that way.

    Regards,



    ------------------------------
    Janos Laszlo Horvath
    ------------------------------

    Original Message


  • 4.  RE: Rate Limiting - Logging / statistics

    Posted Tue June 27, 2023 04:06 AM

    Hello Scott,

    Well I try to reproduce this in our test environment.  I never get status code "-1" but got status code "429".   Is this the right status code to search for rate limit usage?

    Why IBM documentations says status code "-1"?

    Regards,



    ------------------------------
    Janos Laszlo Horvath
    ------------------------------

    Original Message


  • 5.  RE: Rate Limiting - Logging / statistics

    Posted Tue June 27, 2023 04:16 PM

    Janos,

     

    I just took a quick look at the code and the documentation is incorrect.  If the connection is closed due to a rate limiting policy the status code in the request log will be set to 429 and not -1.

     

    Thanks.

     

     

    Scott A. Exton
    Senior Software Engineer
    Chief Programmer - IBM Security Verify Access
    IBM Master Inventor

    cid4122760825*<a href=image002.png@01D85F83.85516C50">

     

     

     




    Original Message


  • 6.  RE: Rate Limiting - Logging / statistics

    Posted Wed June 28, 2023 03:12 PM

    Hello Scott,

    Ok, thanks for confirmation.

    Regards,



    ------------------------------
    Janos Laszlo Horvath
    ------------------------------

    Original Message


Related Content