relax rate limits: 100/50/30 RPM tiers at 0/300/500 RPS thresholds

NetworkCats · NetworkCats · commit d078859c5c23 · 2026-03-22T14:13:12.000+08:00
diff --git a/deploy/ansible/roles/app/templates/haproxy.cfg.j2 b/deploy/ansible/roles/app/templates/haproxy.cfg.j2
@@ -63,12 +63,12 @@ frontend http_in
     # Track global request rate (per second)
     http-request track-sc1 str(global) table global_rate_tracking
 
-    # Tier 3: global >= 200 RPS -> limit each IP to 5 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 200 } { sc_http_req_rate(0) gt 5 }
-    # Tier 2: global >= 100 RPS -> limit each IP to 10 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 100 } { sc_http_req_rate(0) gt 10 }
-    # Tier 1: default -> limit each IP to 30 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(0) gt 30 }
+    # Tier 3: global >= 500 RPS -> limit each IP to 30 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 500 } { sc_http_req_rate(0) gt 30 }
+    # Tier 2: global >= 300 RPS -> limit each IP to 50 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 300 } { sc_http_req_rate(0) gt 50 }
+    # Tier 1: default -> limit each IP to 100 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(0) gt 100 }
 
     # Block /health from external access
     acl is_health path /health
@@ -115,12 +115,12 @@ frontend https_in
     # Track global request rate (per second)
     http-request track-sc1 str(global) table global_rate_tracking
 
-    # Tier 3: global >= 200 RPS -> limit each IP to 5 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 200 } { sc_http_req_rate(0,http_in) gt 5 }
-    # Tier 2: global >= 100 RPS -> limit each IP to 10 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 100 } { sc_http_req_rate(0,http_in) gt 10 }
-    # Tier 1: default -> limit each IP to 30 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(0,http_in) gt 30 }
+    # Tier 3: global >= 500 RPS -> limit each IP to 30 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 500 } { sc_http_req_rate(0,http_in) gt 30 }
+    # Tier 2: global >= 300 RPS -> limit each IP to 50 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 300 } { sc_http_req_rate(0,http_in) gt 50 }
+    # Tier 1: default -> limit each IP to 100 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(0,http_in) gt 100 }
 
     # Block /health from external access
     acl is_health path /health
diff --git a/haproxy/haproxy.cfg b/haproxy/haproxy.cfg
@@ -47,12 +47,12 @@ frontend https_in
     # Track global request rate (per second)
     http-request track-sc1 str(global) table global_rate_tracking
 
-    # Tier 3: global >= 200 RPS -> limit each IP to 5 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 200 } { sc_http_req_rate(0) gt 5 }
-    # Tier 2: global >= 100 RPS -> limit each IP to 10 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 100 } { sc_http_req_rate(0) gt 10 }
-    # Tier 1: default -> limit each IP to 30 RPM
-    http-request deny deny_status 429 if { sc_http_req_rate(0) gt 30 }
+    # Tier 3: global >= 500 RPS -> limit each IP to 30 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 500 } { sc_http_req_rate(0) gt 30 }
+    # Tier 2: global >= 300 RPS -> limit each IP to 50 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(1,global_rate_tracking) ge 300 } { sc_http_req_rate(0) gt 50 }
+    # Tier 1: default -> limit each IP to 100 RPM
+    http-request deny deny_status 429 if { sc_http_req_rate(0) gt 100 }
 
     # Block /health from external access
     acl is_health path /health
diff --git a/locales/ar.po b/locales/ar.po
@@ -87,8 +87,8 @@ msgstr "أرسل طلبًا إلى نقطة النهاية <code>/json</code>،
 msgid "Can I call your service programmatically?"
 msgstr "هل يمكنني استدعاء خدمتكم برمجيًا؟"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "بالتأكيد، لكن يرجى الالتزام بحدود المعدل. عادةً يكون 30 طلبًا في الدقيقة، وتحت الحمل الثقيل قد نخفضه إلى 10 أو 5 طلبات في الدقيقة."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "بالتأكيد، لكن يرجى الالتزام بحدود المعدل. عادةً يكون 100 طلبًا في الدقيقة، وتحت الحمل الثقيل قد نخفضه إلى 50 أو 30 طلبًا في الدقيقة."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "واجهة برمجة التطبيقات مخصصة للاستخدام اليدوي أو المشاريع الصغيرة. إذا كان موقعك يستخدم واجهة برمجة التطبيقات الخاصة بنا للبحث عن عناوين IP للزوار، يرجى استخدام قائمة انتظار الرسائل حتى لا تتعطل الطلبات. إذا كان مشروعك يتعامل مع حركة مرور عالية أو يحتاج إلى زمن استجابة منخفض، فمن الأفضل استخدام قاعدة بياناتنا المحلية مفتوحة المصدر: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. هذا في الواقع ما يستخدمه هذا المشروع داخليًا."
diff --git a/locales/de.po b/locales/de.po
@@ -87,8 +87,8 @@ msgstr "Senden Sie eine Anfrage an den <code>/json</code>-Endpunkt oder senden S
 msgid "Can I call your service programmatically?"
 msgstr "Kann ich Ihren Dienst programmatisch aufrufen?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Klar, aber bitte halten Sie unsere Anfragelimits ein. Normalerweise sind es 30 RPM, und bei hoher Last können wir es auf 10 oder 5 RPM reduzieren."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Klar, aber bitte halten Sie unsere Anfragelimits ein. Normalerweise sind es 100 RPM, und bei hoher Last können wir es auf 50 oder 30 RPM reduzieren."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "Die API ist für manuelle Nutzung oder kleine Projekte gedacht. Wenn Ihre Website unsere API zur Abfrage von Besucher-IPs verwendet, nutzen Sie bitte eine Nachrichtenwarteschlange, damit Anfragen nicht blockieren. Wenn Ihr Projekt hohen Datenverkehr hat oder niedrige Latenz benötigt, verwenden Sie besser unsere Open-Source-Offline-Datenbank: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. Das ist tatsächlich die Datenbank, die dieses Projekt intern verwendet."
diff --git a/locales/en.po b/locales/en.po
@@ -87,8 +87,8 @@ msgstr "Send a request to the <code>/json</code> endpoint, or send a request wit
 msgid "Can I call your service programmatically?"
 msgstr "Can I call your service programmatically?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
diff --git a/locales/es.po b/locales/es.po
@@ -87,8 +87,8 @@ msgstr "Envia una solicitud al endpoint <code>/json</code>, o envia una solicitu
 msgid "Can I call your service programmatically?"
 msgstr "Puedo llamar a su servicio de forma programatica?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Claro, pero por favor respeta nuestros limites de velocidad. Normalmente es de 30 RPM, y bajo carga elevada podemos reducirlo a 10 o 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Claro, pero por favor respeta nuestros limites de velocidad. Normalmente es de 100 RPM, y bajo carga elevada podemos reducirlo a 50 o 30 RPM."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "La API esta pensada para uso manual o proyectos pequenos. Si tu sitio usa nuestra API para consultar las IP de los visitantes, utiliza una cola de mensajes para que las solicitudes no se bloqueen. Si tu proyecto tiene mucho trafico o necesita baja latencia, es mejor que uses nuestra base de datos offline de codigo abierto: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. De hecho, es lo que este proyecto usa internamente."
diff --git a/locales/fr.po b/locales/fr.po
@@ -87,8 +87,8 @@ msgstr "Envoyez une requete au point de terminaison <code>/json</code>, ou envoy
 msgid "Can I call your service programmatically?"
 msgstr "Puis-je appeler votre service de maniere programmatique ?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Bien sur, mais veuillez respecter nos limites de debit. Normalement c'est 30 RPM, et en cas de forte charge nous pouvons le reduire a 10 ou 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Bien sur, mais veuillez respecter nos limites de debit. Normalement c'est 100 RPM, et en cas de forte charge nous pouvons le reduire a 50 ou 30 RPM."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "L'API est concue pour un usage manuel ou de petits projets. Si votre site utilise notre API pour rechercher les IP des visiteurs, utilisez une file de messages pour que les requetes ne soient pas bloquees. Si votre projet a un trafic eleve ou necessite une faible latence, il vaut mieux utiliser notre base de donnees hors ligne open source : <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. C'est d'ailleurs ce que ce projet utilise en interne."
diff --git a/locales/id.po b/locales/id.po
@@ -87,8 +87,8 @@ msgstr "Kirim permintaan ke endpoint <code>/json</code>, atau kirim permintaan d
 msgid "Can I call your service programmatically?"
 msgstr "Bisakah saya memanggil layanan Anda secara programatik?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Tentu, tapi mohon patuhi batas laju kami. Normalnya 30 RPM, dan saat beban tinggi kami mungkin menurunkannya ke 10 atau 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Tentu, tapi mohon patuhi batas laju kami. Normalnya 100 RPM, dan saat beban tinggi kami mungkin menurunkannya ke 50 atau 30 RPM."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "API ini ditujukan untuk penggunaan manual atau proyek kecil. Jika situs Anda menggunakan API kami untuk mencari IP pengunjung, gunakan antrean pesan agar permintaan tidak terblokir. Jika proyek Anda memiliki lalu lintas tinggi atau membutuhkan latensi rendah, lebih baik gunakan basis data offline sumber terbuka kami: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. Sebenarnya itulah yang digunakan proyek ini di balik layar."
diff --git a/locales/it.po b/locales/it.po
@@ -87,8 +87,8 @@ msgstr "Invia una richiesta all'endpoint <code>/json</code>, oppure invia una ri
 msgid "Can I call your service programmatically?"
 msgstr "Posso chiamare il vostro servizio in modo programmatico?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "Certo, ma rispetta i nostri limiti di frequenza. Normalmente e 30 RPM, e sotto carico elevato potremmo ridurlo a 10 o 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "Certo, ma rispetta i nostri limiti di frequenza. Normalmente e 100 RPM, e sotto carico elevato potremmo ridurlo a 50 o 30 RPM."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "L'API e pensata per l'uso manuale o piccoli progetti. Se il tuo sito usa la nostra API per cercare gli IP dei visitatori, usa una coda di messaggi per evitare che le richieste si blocchino. Se il tuo progetto ha un traffico elevato o necessita di bassa latenza, e meglio usare il nostro database offline open source: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. In realta e proprio quello che questo progetto usa internamente."
diff --git a/locales/ja.po b/locales/ja.po
@@ -87,8 +87,8 @@ msgstr "<code>/json</code> エンドポイントにリクエストを送信す
 msgid "Can I call your service programmatically?"
 msgstr "プログラムからこのサービスを呼び出せますか？"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "もちろんですが、レート制限を守ってください。通常は30 RPMで、高負荷時には10または5 RPMに制限する場合があります。"
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "もちろんですが、レート制限を守ってください。通常は100 RPMで、高負荷時には50または30 RPMに制限する場合があります。"
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "このAPIは手動での利用や小規模プロジェクト向けです。サイトで当APIを使って訪問者のIPを調べる場合は、リクエストがブロックされないようメッセージキューを使ってください。高トラフィックや低レイテンシが必要なプロジェクトの場合は、オープンソースのオフラインデータベースを使う方がよいでしょう：<a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>。実はこのプロジェクトも内部で同じものを使っています。"
diff --git a/locales/ko.po b/locales/ko.po
@@ -87,8 +87,8 @@ msgstr "<code>/json</code> 엔드포인트로 요청을 보내거나 <code>appli
 msgid "Can I call your service programmatically?"
 msgstr "이 서비스를 프로그래밍 방식으로 호출할 수 있나요?"
 
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
-msgstr "물론이지만, 요청 제한을 준수해 주세요. 보통 30 RPM이며, 부하가 높을 때는 10 또는 5 RPM으로 낮출 수 있습니다."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
+msgstr "물론이지만, 요청 제한을 준수해 주세요. 보통 100 RPM이며, 부하가 높을 때는 50 또는 30 RPM으로 낮출 수 있습니다."
 
 msgid "The API is meant for manual use or small projects. If your site uses our API to look up visitor IPs, please use a message queue so requests don't block. If your project has high traffic or needs low latency, you're better off using our open source offline database: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. That's actually what this project uses under the hood."
 msgstr "이 API는 수동 사용이나 소규모 프로젝트를 위한 것입니다. 사이트에서 저희 API로 방문자 IP를 조회하는 경우, 요청이 차단되지 않도록 메시지 큐를 사용해 주세요. 트래픽이 많거나 낮은 지연 시간이 필요한 프로젝트라면 오픈소스 오프라인 데이터베이스를 사용하는 것이 좋습니다: <a href=\"https://github.com/NetworkCats/Merged-IP-Data\">Merged IP Database</a>. 실제로 이 프로젝트도 내부적으로 같은 것을 사용하고 있습니다."
diff --git a/locales/messages.pot b/locales/messages.pot
@@ -115,7 +115,7 @@ msgid "Can I call your service programmatically?"
 msgstr ""
 
 #: templates/index.html - FAQ answer paragraph 1
-msgid "Sure, but please respect our rate limits. Normally it's 30 RPM, and under heavy load we may drop it to 10 or 5 RPM."
+msgid "Sure, but please respect our rate limits. Normally it's 100 RPM, and under heavy load we may drop it to 50 or 30 RPM."
 msgstr ""
 
 #: templates/index.html - FAQ answer paragraph 2
diff --git a/locales/nl.po b/locales/nl.po
diff --git a/locales/pt.po b/locales/pt.po
diff --git a/locales/ru.po b/locales/ru.po
diff --git a/locales/zh-Hans.po b/locales/zh-Hans.po
diff --git a/locales/zh-Hant.po b/locales/zh-Hant.po
diff --git a/src/handlers.rs b/src/handlers.rs
