Maybe there's a better way - so please feel free to post comments.
For a relatively light loaded app engine server, tracking heavy request loads from the same IP address should be trivial. This server then would respond to periodic (30 seconds or so) queries from an upload PC asking what IP addresses need to be blocked, and the upload PC issue an "appcfg.py update_dos myapp/" (pipe in your password with --passin, and use the -e <emailaddress> option) to block the app engine server from the DOS attack.
I just noticed that cron jobs can be added to app engine. I'm guessing this would also be a way to update the blocked list.
ReplyDeletehttp://code.google.com/appengine/docs/python/config/cron.html