1. Fixed Window Rate Limiting (in .NET)
What it is
The Fixed Window algorithm counts requests within a strict time window (like a box of time). When the window resets, the count resets too.
Example
- Limit: 10 requests per minute.
- Every minute (e.g., from 10:00:00 to 10:01:00), a new window opens.
- If a client makes 10 requests at 10:00:05, they are allowed.
- The next request (11th) before 10:01:00 will get blocked (HTTP 429 error).
- At 10:01:00, the window resets and they can make requests again.
In .NET
Pros
- Very simple and fast to implement.
- Good for low-traffic or non-critical APIs.
Cons
- Allows “burst traffic” at the start of the window (all 10 requests may come instantly).
- Not very "smooth" — users may hit the limit early and wait for the whole window.
2. Sliding Window Rate Limiting (in .NET)
What it is
Example
- Limit: 10 requests per minute (rolling).
- If 10 requests were made between 10:00:30 and 10:01:30, the limit applies based on that rolling window — not the wall clock.
- This avoids a sudden "burst" problem and gives a smoother, fairer limit.
In .NET
options.AddSlidingWindowLimiter("sliding", opt =>
{
opt.Window = TimeSpan.FromMinutes(1); // 1-minute rolling window
opt.PermitLimit = 10; // 10 requests allowed in the last minute
opt.SegmentsPerWindow = 4; // divide into 4 parts (15 seconds each)
opt.QueueProcessingOrder = QueueProcessingOrder.OldestFirst;
opt.QueueLimit = 2;
});SegmentsPerWindow: The window is divided into smaller parts (helps tracking requests better).
Pros
- Fairer and smoother — no sudden resets or spikes.
- Prevents "burst" requests at the start of each minute.
Cons
- Slightly more memory and CPU usage (to track rolling windows).
- Complex to implement manually (but .NET does this for you).
When to Use Which?
| Scenario | Fixed Window | Sliding Window |
|---|---|---|
| Simple internal APIs | ✅ Good | ❌ Overkill |
| Public APIs used by 1000s of users | ❌ Not Recommended | ✅ Better |
| Need smooth traffic flow (e.g., payment gateway) | ❌ Bad for bursts | ✅ Ideal |
| Want easy implementation without extra load | ✅ Very Easy | ❌ Slightly heavy |
Interview Perspective
Q: What is the key difference between Fixed and Sliding window algorithms in API Rate Limiting?
- Fixed Window resets the counter after each period (e.g., every minute).
- Sliding Window checks requests across a rolling period, making limits smoother and avoiding bursts.
- Sliding is better for high-traffic public APIs, while Fixed is good for simple, low-risk endpoints.
Real Example: Login API in .NET
Fixed Window
Sliding Window
Summary
| Fixed Window | Sliding Window |
|---|---|
| Simple, less resource-hungry | Smooth, prevents burst requests |
| Allows initial bursts | Spreads requests over time |
| Good for small/private APIs | Best for public APIs, payment, login |
| Reset happens strictly by time | Reset happens by rolling calculation |
If you want, I can
- Build a full sample .NET app demonstrating both types.
- Help you prepare exact interview answers.
- Show how to apply rate limiting per user/IP dynamically.
Windows Hosting Recommendation
HostForLIFEASP.NET receives
Spotlight standing advantage award for providing recommended, cheap and
fast ecommerce Hosting including the latest Magento. From the
leading technology company, Microsoft. All the servers are equipped with
the newest Windows Server 2022 R2, SQL Server 2022, ASP.NET Core 7.0.10 ,
ASP.NET MVC, Silverlight 5, WebMatrix and Visual Studio Lightswitch.
Security and performance are at the core of their Magento hosting
operations to confirm every website and/or application hosted on their
servers is highly secured and performs at optimum level. mutually of the
European ASP.NET hosting suppliers, HostForLIFE guarantees 99.9% uptime
and fast loading speed. From €3.49/month , HostForLIFE provides you
with unlimited disk space, unlimited domains, unlimited bandwidth,etc,
for your website hosting needs.
0 comments:
Post a Comment