Securing Your App
Auto Blocking
Prevent your applications from abuse with auto-blocking
How it works
Autoblocks uses ip-based ratelimits to control and prevent any abuse to your applications. You set the rule of the following:
- Maximum consecutive attempts: The number of failed attempts allowed before blocking an IP address
- Block duration: The time period for which an IP address remains blocked after exceeding the maximum attempts
Configuration
Setting up Auto Blocking
To enable auto-blocking for your application:
- If you haven't, setup your account first
- Go to your environment Config sections
- In the left sidebar, choose Attack Protection.
- In the Auto-Block section, setup your blocking rules:
- Set maximum consecutive attempts (e.g., 10 attempts)
- Set block duration (e.g., 1 hour)
- Save your configuration
Monitoring and Analytics
Best Practices
Recommended Settings
Start with these baseline configurations:
- Maximum attempts: 99 consecutive attempts
- Block duration: 1-6 hours depending on security requirements
Fine-tuning Guidelines
Adjust your settings based on:
- Application type (API, web app, authentication service)
- User behavior patterns
- Security requirements
- False positive rate
Last updated on