TrafficFilter 2.0.2

.NET Standard 2.1 This package targets .NET Standard 2.1. The package is compatible with this framework or higher. 
dotnet add package TrafficFilter --version 2.0.2
                    


                    

                
NuGet\Install-Package TrafficFilter -Version 2.0.2
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="TrafficFilter" Version="2.0.2" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="TrafficFilter" Version="2.0.2" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="TrafficFilter" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add TrafficFilter --version 2.0.2
                    


                    

                
#r "nuget: TrafficFilter, 2.0.2"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#addin nuget:?package=TrafficFilter&version=2.0.2
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=TrafficFilter&version=2.0.2
                    


                            Install as a Cake Tool

TrafficFilter TrafficFilter

Tiny ASP.NET Core middleware for request filtering and rate limiting. Configuration based Firewall and RateLimeter.

About

TrafficFilter is a lightweight ASP.NET Core middleware that enables request filtering and rate-limiting. Once any firewall rule or rate limiting matches, the requester's IP address is blacklisted for the duration of a configured period. The following rules are available:

  • Request URL
  • Request Header
  • Request IP Address

Each rule can be configured in the appsettings.json file.

TrafficFilter may be useful in scenarios when you want to protect your origin server resources from unwanted scanners/bots.

TrafficFilter will block requests from further processing if the configured rule matched or requests rate limit is reached.

Getting Started

First install the TrafficFilter NuGet package using PowerShell:

PM> Install-Package TrafficFilter

or via the dotnet command line:

dotnet add package TrafficFilter

Then add the TrafficFilter middleware to your ASP.NET Core Startup class:

using TrafficFilter;

namespace SampleWebApp
{
    public class Startup
    {
        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            // --- TrafficFilter ---
            services.AddTrafficFilter(Configuration);

            //...
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IWebHostEnvironment env, ILogger<Startup> logger)
        {
            if (env.IsProduction())
            {
                var forwardedOptions = new ForwardedHeadersOptions()
                {
                    ForwardedHeaders = ForwardedHeaders.All,
                    ForwardLimit = null
                };
                forwardedOptions.FillKnownNetworks(logger); // TrafficFilter extension to load Cloudflare IP ranges and fill KnownNetworks (https://www.cloudflare.com/ips/)
                app.UseForwardedHeaders(forwardedOptions);
            }

            // --- TrafficFilter ---
            app.UseTrafficFilter();

            //...
        }
    }
}

Add TrafficFilter configuration section to appsettings.json, modify it as needed:

    "TrafficFilter": {
        "IPBlacklistTimeoutSeconds": 5,
        "Firewall": {
            "IsEnabled": true,
            "BlockRules": [
                {
                    "RequestPart": "Url", // Possible options: "Url|Header:user-agent|IP"
                    "MatchType": "EndsWith", // Possible options: "Regex|Contains|StartsWith|EndsWith|Exact|NullOrEmpty"
                    "Match": ".php",
                    "Group": "group1" // Optional group name for the rule, can be used when multiple rules need to be applied to the same group with the AND condition
                },
                {
                    "RequestPart": "IP",
                    "MatchType": "Regex",
                    "Match": "10\\.10\\.\\d+\\.\\d+",
                    "Group": "group1"
                },
                {
                    "RequestPart": "Header:user-agent",
                    "MatchType": "EndsWith",
                    "Match": "BadBot"
                }
            ]
        },
        "RateLimiter": {
            "IsEnabled": true,
            "WindowSeconds": 2,
            "RequestsLimit": 20, // If there were 20 requests (RequestsLimit) from the same IP in the last 2 seconds (WindowSeconds), the IP will be blacklisted
            "WhitelistRules": [
                {
                    "RequestPart": "Url",
                    "MatchType": "EndsWith",
                    "Match": ".jpg"
                }
            ]
        }
    }

Documentation

If any of the enabled rules matches the incoming request, the requester's IP address is added to the blacklist for the duration of IPBlacklistTimeoutSeconds and HttpStatusCode.TooManyRequests is returned.

Possible values for MatchType are: Regex, Contains, StartsWith, EndsWith, Exact, NullOrEmpty.

Possible values for RequestPart are: Url, Header:header-name, IP.

Rate limiting RateLimiter is applied per IP address

To support deployments bihind Cloudflare, use forwardedOptions.LoadCloudflareKnownNetworks() extension method to load and populate known networks.

Take a look at SampleWebApp for configuration details if needed.

Credits

Icons made by Freepik from www.flaticon.com

License

Apache 2.0

Product Compatible and additional computed target framework versions.
.NET net5.0 was computed.  net5.0-windows was computed.  net6.0 was computed.  net6.0-android was computed.  net6.0-ios was computed.  net6.0-maccatalyst was computed.  net6.0-macos was computed.  net6.0-tvos was computed.  net6.0-windows was computed.  net7.0 was computed.  net7.0-android was computed.  net7.0-ios was computed.  net7.0-maccatalyst was computed.  net7.0-macos was computed.  net7.0-tvos was computed.  net7.0-windows was computed.  net8.0 was computed.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
.NET Core netcoreapp3.0 was computed.  netcoreapp3.1 was computed. 
.NET Standard netstandard2.1 is compatible. 
MonoAndroid monoandroid was computed. 
MonoMac monomac was computed. 
MonoTouch monotouch was computed. 
Tizen tizen60 was computed. 
Xamarin.iOS xamarinios was computed. 
Xamarin.Mac xamarinmac was computed. 
Xamarin.TVOS xamarintvos was computed. 
Xamarin.WatchOS xamarinwatchos was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
2.0.2 202 6/13/2025
2.0.1 277 6/11/2025
1.0.5 445 4/2/2023