You can use the following approach to introduce rate limiting safely into your environment:
  1. Start with disabling rate limiting by setting enabled=false.
  2. Enable rate limiting with generous values such as max_requests_per_second=20 and burst_capacity=40. Monitor logs for behavior.
  3. Adjust to target steady-state values after observing telemetry for 24 hours.
  4. Add alerting mechanisms for thresholds such as a high number of denies per minute.