Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
T
T
TraiDeR2015-09-05 15:23:44
PHP
TraiDeR, 2015-09-05 15:23:44

How to deal with the load when holding F5 on wp-login?

Hello! There is a VPS for $5 from DigitalOcean, it runs several sites with a total traffic of about 3k hosts per day. Installed nginx + php-fpm. Fastcgi cache configured. When viewing the content of sites, the load on the processor is negligible.
2971a1a4fdc8456ea916bbe3dc811c10.png
If you hold down F5 on a page with content, the server will not feel much of anything, since the page will be served from the cache, however, if you go to the wp-login.php page and hold down f5 there, the processor load will increase to 100% and several php-fpm processor.
21d43cc5a8bd4fedb32239725bcbf0a2.png
Unfortunately, I don’t have enough skills in setting up servers, I can do something according to the guide, but no more. The question is, is there anything that can be done so that the user, when accessing the wp-login.php page, cannot put my server down by pressing the f5 key? Reading on a toastera similar question , they recommended installing WP-FFPC, but I don’t know if it will help me in this matter? Please tell me, maybe there are some solutions, examples of configs, etc.
UPD: NGINX configs and host of one of the sites.
nginx.conf:

user www-data;
worker_processes 1;
pid /var/run/nginx.pid;

events {
  worker_connections 768;
  # multi_accept on;
}

http {
  client_max_body_size 20M;
  sendfile on;
  tcp_nopush on;
  tcp_nodelay on;
  keepalive_timeout 65;
  types_hash_max_size 2048;
  server_tokens off;

  #Limit Request
  limit_req_zone $binary_remote_addr zone=one:10m rate=1r/s;
  limit_req_status 444;

  server_names_hash_bucket_size 64;
  # server_name_in_redirect off;

  include /etc/nginx/mime.types;
  default_type application/octet-stream;

  access_log /var/log/nginx/access.log;
  error_log /var/log/nginx/error.log;

  gzip on;
  gzip_disable "msie6";
  gzip_types text/css text/x-component application/x-javascript application/javascript text/javascript text/x-js text/richtext image/svg+xml text/plain text/xsd text/xsl text/xml image/x-icon;
  # gzip_vary on;
  gzip_proxied any;
  gzip_min_length 1100;
  gzip_comp_level 3;
  gzip_buffers 16 8k;
  gzip_http_version 1.0;
  #gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript;

  #Nginx Helper Wordpress
  fastcgi_cache_path /home/server/nginx-cache levels=1:2 keys_zone=WORDPRESS:10m inactive=30m; 
  fastcgi_cache_key "$scheme$request_method$host$request_uri";
  fastcgi_cache_use_stale error timeout invalid_header http_500;	
  include /etc/nginx/conf.d/*.conf;
  include /etc/nginx/sites-enabled/*;
}

Site host:
server {
  listen   80; 
  server_name site.name www.site.name;
  
  root /home/server/htdocs/site.name/www;
   	
  access_log /home/server/logs/site.name/nginx.access.log;
  error_log /home/server/logs/site.name/nginx.error.log;
  index index.php index.html index.htm;

  #request
  location = /wp-login.php {
    limit_req zone=one burst=1 nodelay;
    include fastcgi_params;
    fastcgi_pass unix:/var/run/php5-fpm.sock;
    limit_req_status 444;
  }

        #Enable Browser Cache
  location ~* \.(jpg|jpeg|gif|png|ico|css|pdf|ppt|txt|bmp|rtf|js)$ {
       		access_log off; 
    expires 30d;
    #add_header Pragma public;
  		#add_header Cache-Control "public, must-revalidate, proxy-revalidate";
  }

  #Block HotLink
  location ~ \.(jpeg|png|gif|jpg)$ {
    valid_referers none blocked site.name *.site.name;
    if ($invalid_referer) {
    return 403;
    }
  }	

  error_page 404 /404.html;
  error_page 500 502 503 504 /50x.html;
  location = /50x.html {
    root /etc/nginx/error;
  }
  
        #Nginx Helper
  set $skip_cache 0;

  # POST requests and urls with a query string should always go to PHP
  if ($request_method = POST) {
    set $skip_cache 1;
  }   
  if ($query_string != "") {
    set $skip_cache 1;
  }   

  # Don't cache uris containing the following segments
  if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(_index)?.xml|[a-z0-9_-]+-sitemap([0-9]+)?.xml)") {
    set $skip_cache 1;
  }   

  # Don't use the cache for logged in users or recent commenters
  if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in") {
    set $skip_cache 1;
  }
  
  location ~ .php$ {
    try_files $uri =404; 
    include fastcgi_params;
    fastcgi_pass unix:/var/run/php5-fpm.sock;
    fastcgi_cache_bypass $skip_cache;
          fastcgi_no_cache $skip_cache;
    fastcgi_index index.php;
    fastcgi_cache WORDPRESS;
    fastcgi_ignore_headers Cache-Control Expires Set-Cookie;
    fastcgi_cache_valid 200 301 202 404 60m;
  }
  
  location ~ /purge(/.*) {
      fastcgi_cache_purge WORDPRESS "$scheme$request_method$host$1";
  }	
  
  #WORDPRESS conf
  location / {
  try_files $uri $uri/ /index.php?$args;
  }
  location = /favicon.ico {
    log_not_found off;
    access_log off;
  }
  location = /robots.txt {
    allow all;
    log_not_found off;
    access_log off;
  }
  location ~ /\. {
    deny all;
  }
  location ~* /(?:uploads|files)/.*\.php$ {
    deny all;
  }
  
  rewrite /wp-admin$ $scheme://$host$uri/ permanent;	
}

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
M
Maxim Dunin, 2015-09-15
@TraiDeR

Judging by:

location = /wp-login.php {
    limit_req zone=one burst=1 nodelay;
    include fastcgi_params;
    fastcgi_pass unix:/var/run/php5-fpm.sock;
    limit_req_status 444;
}
in the given config, you already know how to solve this problem correctly (or was it your predecessor?). Using limit_req is the right way, but apparently it's not used for all important resources. The easiest way is to apply limit_req to all php calls by setting a fairly large burst:
location ~ \.php$ {
    limit_req one burst=30 nodelay;
    ...
}

At the same time, the rate in limit_req_zone could be lowered, say, to 5r/m, because a rare real user is able to view more than 30 pages in a row, while spending less than 15 seconds per page. But at the same time, it is important to make sure that all limit_reqs using this zone have a reasonable burst, and not 1.
You can read more about limit_req in the documentation .
(I will note in parentheses that your config does not have a "\" before "." in "location ~ .php$", as a result, requests that are not related to it may get into the location, because just a dot in the regular expression is any symbol.)

Report
S
sim3x, 2015-09-05
@sim3x

nginx.org/en/docs/http/ngx_http_auth_basic_module.html
for location /wp-admin

Report
T
TyzhSysAdmin, 2015-09-05
@POS_troi

there recommended to install WP-FFPC

How about trying and finding out?
First, see your nginx config

Similar questions
S
StayAtHome2015-04-01 12:24:02
How to distinguish a web request from a regular page from a request from the extension itself from a Chrome/Opera extension? 4Reply
E
Evgeny Samsonov2015-04-05 17:45:37
What is the name of the USB device? 3Reply
I
Isaac Clark2017-04-05 13:43:42
HTML5 GAME: Is it better to use Canvas or DIV for sprite animation? 5Reply
D
Dmitry2019-09-20 14:21:34
Does not download files from utorrent, openwrt firmware? 1Reply
C
coderlex2016-07-14 19:56:42
How to connect typings? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question