My entreprise is running many web services and make them available from the internet.
I was wondering : how does a web server manages the requests / load ?
If an attacker makes thousands of requests using always the same IP address as source, will the web server (e.g. nginx) manage it better than if the flows had come from many different source addresses (e.g. ddos) ?
2nd question :
How can we protect our services from the ports scanner ? (And other scanners)
Are waf really efficient ?
Are CDNs needed ?
In the case where the requests come from thousands of different IPs, I guess nothing can protect us…