[GH-ISSUE #103] 集群环境CC配置不共享问题 #78

New issue

Closed

opened 2026-03-04 12:18:45 +03:00 by kerem · 4 comments

kerem commented 2026-03-04 12:18:45 +03:00

Owner

Copy link

Originally created by @ccyuvin on GitHub (Aug 4, 2022).
Original GitHub issue: https://github.com/ADD-SP/ngx_waf/issues/103

环境背景：有多个nginx节点共同提供服务，用户通过四层LB轮询到多个nginx节点。
问题：配置了waf_action cc_deny=CAPTCHA，当用户触发CC请求次数的上限，进行验证码效验时，效验的POST /captcha 请求有可能轮询到另一个nginx节点，另一个节点未达到CC请求次数的上限，则会返回405响应，用户会一直卡在验证页面。刷新页面后又会重新要求进行验证码效验。
此外，CC请求次数的上限和验证码功能目前是记录在waf_zone，也就是本机内存中，无法进行多节点共享。后续是否可以考虑放入redis或者其他方式进行集群共享？

Originally created by @ccyuvin on GitHub (Aug 4, 2022). Original GitHub issue: https://github.com/ADD-SP/ngx_waf/issues/103 环境背景：有多个nginx节点共同提供服务，用户通过四层LB轮询到多个nginx节点。 问题：配置了waf_action cc_deny=CAPTCHA，当用户触发CC请求次数的上限，进行验证码效验时，效验的POST /captcha 请求有可能轮询到另一个nginx节点，另一个节点未达到CC请求次数的上限，则会返回405响应，用户会一直卡在验证页面。刷新页面后又会重新要求进行验证码效验。 此外，CC请求次数的上限和验证码功能目前是记录在waf_zone，也就是本机内存中，无法进行多节点共享。后续是否可以考虑放入redis或者其他方式进行集群共享？

kerem 2026-03-04 12:18:45 +03:00

• closed this issue
• added the
  stale
  label

kerem commented 2026-03-04 12:18:46 +03:00

Author

Owner

Copy link

@stale[bot] commented on GitHub (Aug 11, 2022):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

<!-- gh-comment-id:1211498375 --> @stale[bot] commented on GitHub (Aug 11, 2022): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. 此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

kerem commented 2026-03-04 12:18:46 +03:00

Author

Owner

Copy link

@stale[bot] commented on GitHub (Aug 30, 2022):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

<!-- gh-comment-id:1232201989 --> @stale[bot] commented on GitHub (Aug 30, 2022): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. 此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

kerem commented 2026-03-04 12:18:46 +03:00

Author

Owner

Copy link

@stale[bot] commented on GitHub (Sep 13, 2022):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

<!-- gh-comment-id:1245021089 --> @stale[bot] commented on GitHub (Sep 13, 2022): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. 此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

kerem commented 2026-03-04 12:18:46 +03:00

Author

Owner

Copy link

@stale[bot] commented on GitHub (Sep 26, 2022):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

<!-- gh-comment-id:1258288253 --> @stale[bot] commented on GitHub (Sep 26, 2022): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. 此 issue 因为最近没有任何活动已经被标记，如果在此之后的一段时间内仍没有任何活动则会被关闭。感谢您对项目的支持。

kerem referenced this issue 2026-03-13 16:56:35 +03:00

[GH-ISSUE #78] tengine静态编译出错 #193

kerem referenced this issue 2026-03-13 17:01:23 +03:00

[GH-ISSUE #86] current分支make module时报错 #200

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

lts

lts-dev

add_sp/refactor-replace-libcurl-with-subreq

current-dev

current

current-dev-backup

v6.1.10

v10.1.2

v6.1.9

v6.1.8

v10.1.1

v10.1.0

v6.1.7

v10.0.1

v10.0.0

v9.0.6

v9.0.5

v6.1.6

v6.1.5

v9.0.4

v9.0.3

v9.0.2

v9.0.1

v9.0.0

v8.0.3

v6.1.4

v8.0.2

v8.0.1

v6.1.3

v8.0.0

v7.1.0

v6.1.2

v7.0.1

v7.0.0

v6.1.1

v6.1.0

v6.0.3

v6.0.2

v6.0.2-beta.1

v6.0.1

v6.0.1-beta.2

v6.0.1-beta.1

v6.0.0

v6.0.0-beta.4

v5.5.1

v6.0.0-beta.2

v6.0.0.beta.3

v6.0.0-beta.1

v5.5.0

v5.4.2

v5.4.2-beta.2

v5.4.2-beta.1

v5.4.1

v5.4.1-beta.1

v5.4.0

v5.4.0-beta.1

v5.3.2

v5.3.1

v5.3.0

v5.3.0-beta.4

v5.3.0-beta.3

v5.3.0-beta.2

v5.3.0-beta.1

v5.2.0

v5.2.0-beta.2

v5.2.0-beta.1

v5.1.1

v5.1.1-beta.1

v5.1.0

v5.0.0

v5.0.0-beta.5

v5.0.0-beta.4

v5.0.0-beta.3

v5.0.0-beta.2

v5.0.0-beta.1

v4.1.0-beta.4

v4.1.0-beta.3

v4.1.0-beta.2

v4.1.0-beta.1

v4.0.0

v4.0.0-beta.2

v3.1.6

v3.2.0-beta.1

v3.1.5

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.1.0-beta-1

v3.0.3-beta-3

v3.0.2

v3.0.3-beta-2

v3.0.3-beta-1

v3.0.2-beta-2

v3.0.2-beta-1

v3.0.1

v3.0.0

v3.0.0-beta-2

v3.0.0-beta-1

v2.1.1

v2.1.0

v2.0.2

v2.0.1

v2.0.1-beta-1

v2.0.0

v2.0.0-beta.1

v1.0.1

v1.0.0

v1.0.0-RC2

v1.0.0-RC1

Labels

Clear labels   

MacOS

  

Nginx

  

OpenResty

  

Tengine

  

bug

  

documentation

  

enhancement

  

needs-investigation

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

stale

  

stale

  

stale

  

timeout

  

wontfix

No labels

MacOS

Nginx

OpenResty

Tengine

bug

documentation

enhancement

needs-investigation

pull-request

question

stale

stale

stale

timeout

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ngx_waf#78

No description provided.