Is it possible to block IPs if they send to many requests?

I am building an app with a part that is publicly available, that means i have a route where requests can be send from a public visitor.

My concern is now, if it is possible to create a limitation for how many requests can be send in a specific time to prevent that the service gets unavailable because someone or a bot sent to many requests.

Is it possible to achieve this with


Hey - doesn’t have rate limiting built in, but many frameworks and runtimes offer tooling that can do this. What does your stack/app look like?

An out of box rate-limiter at Fly’s proxy layer would be nice, but isn’t yet available.

Cloudflare’s rate-limiter is free to use if the additional latency is worth it for you; or check if setting up tc works now.