Global Rate Limiting for Services
TOC
Introduction
Global rate limiting protects services from overload in high-concurrency scenarios by:
- Maintaining request volumes within service capacity
- Preventing resource exhaustion through traffic shaping
- Enabling precise access control via conditional policies
Core value: Ensures service stability while maximizing resource utilization
Features
- Global and conditional policy modes
- Multi-dimension rule matching (Path/Method/Headers)
- Shadow mode for policy validation
- Real-time monitoring dashboard
Advantages
- Precision Control: Granular API-level throttling
- Risk Mitigation: Dry-run capability via shadow mode
- Flexible Matching: Regex/equality/inequality operators
- Visual Validation: Instant policy effectiveness feedback
Creating Rate Limiting Policies
Step 1: Access Policy Interface
- Navigate: Service List > Target Service
- Select Rate Limiting tab
- Click Create Rate Limiting Policy
Step 2: Policy Type Selection
| Type | Constraints |
|---|---|
| Global Policy | • Single policy per service OR relationship with conditional policies |
| Conditional Policy | • Multiple policies allowed AND relationship between rules |
Step 3: Configure Policy Rules
Rule Components
| Category | Example | Matching Methods |
|---|---|---|
| API PATH | /api/v1 | Equal/Not Equal/Regex |
| HTTP METHOD | POST | Equal/Not Equal |
| Headers | User-Agent: Mobile | Equal/Not Equal/Regex |
Configuration Notes
- Regex matching follows RE2 syntax
- Header matching requires full
key:valueformat - Multiple rules are AND-combined
Step 4: Set Rate Threshold
| Parameter | Description |
|---|---|
| Requests/Unit Time | Maximum allowed requests |
| ShadowMode | • Disabled: Enforces limit Enabled: Audit-only mode |
Rate Limiting Monitoring
Key Metrics
| Metric | ShadowMode Disabled | ShadowMode Enabled |
|---|---|---|
| Requests | Actual served | Matched requests |
| Limited | Rejected requests | Potential rejects |
Data Interpretation
- Select policy from dropdown
- Choose time range (last 1h/24h/7d)
- Compare allowed vs limited curves
- Validate policy effectiveness
Policy Management
- Global-Conditional Relationship: Requests matching either policy type get limited
- Rule Precedence: First-match principle in conditional policies
- Policy Editing: Immediate effect after modification
ON THIS PAGE