Greetings Everyone (and apologies if this has been asked previously, I’ve searched the forums and come up empty),
We would like to setup IP rate limiting for our HLS based streams. As a single HLS stream viewer will nominally create multiple TCP connections per minute and we are looking for suggestions and/or your own solutions for preventing a DoS when individuals (who are allowed to view streams) attempt to open a large number of streams from a single source address. We offer many different (~12) simultaneous streams to our viewers and any number of them could be active at the same time(typically between 1 and 5), we would not want a legitimate viewer to be completely denied viewing access while at the same time, we would like to limit them from causing undue host load.
I welcome your suggestions, and implemented solutions to this problem and I hope to find a best-practice for this situation if one does exist.