Hi All!
I have rust software the maintains fairly low i/o tcp protocol traffic, but lots of persistent connections. 100’s to 10’s of thousands depending on location.
I currently use application firewalls where if someone is doing something that violates the protocol I emit a pubsub message which a service on the backends subscribe to, and order nft rulesets to ban them everywhere.
Can something similar be done on fly’s network? Basically I dont want to be in a position with my pants down being attacked and nothing I can do about it other then in the app to drop those packets (which could quickly overwealm my cpu and cause massive costs depending on the size of the attack)
Thanks.