EMQX Enterprise

日本語

简体中文
English

日本語

简体中文
English

Appearance

お問い合わせ

Configure and Manage Namespaces

You can configure and manage namespaces using the Dashboard and REST API, including setting session limits, rate limits, and managing connected clients.

Namespace Rate Limits

Namespace configuration mainly includes maximum session limits and rate limiters. Before configuring rate limiters, it is recommended to understand the different types of rate limiters available for namespaces and their scope of effect.

For details on how to configure specific options, see Configure and Manage Namespaces via Dashboard.

Namespace rate limiters can be used to control message traffic and bandwidth usage for clients within a specific namespace. They can work together with existing EMQX rate-limiting mechanisms (such as zone-level or listener-level rate limiters), depending on the type of rate limiter configured.

Rate Limiter Types

There are two types of rate limiters available for managed namespaces:

Tenant Rate Limiter

The tenant rate limiter allocates shared tokens across all clients within the same namespace.

When this limiter is enabled:

  • The limit applies to the entire namespace
  • It works together with existing zone-level rate limiters
  • Clients must satisfy both the zone-level and namespace-level limits

This type is suitable for scenarios where the overall traffic of a tenant needs to be controlled.

Client Rate Limiter

The client rate limiter allocates dedicated tokens to each client within a namespace.

When this limiter is enabled:

  • The limit applies to individual clients
  • It overrides listener-level rate limiters
  • Listener-level rate limits are ignored, and only the namespace client rate limiter is applied

This type is suitable for scenarios that require fine-grained control over individual client behavior.

Supported Limiting Dimensions

Both tenant and client rate limiters support the following dimensions:

  • Message rate limit: The maximum number of messages that a client or tenant can publish within a specified period
  • Byte throughput limit: The maximum effective payload size that can be transmitted within a specified period

:::

For more details about the rate-limiting mechanism, see Rate Limiting.

:::

Configure and Manage Namespaces via Dashboard

In the Dashboard’s left-side menu, go to Management -> Namespace. On the Namespace page, you can view, edit, or delete namespaces and manage clients connected to each namespace.

By default, the namespace list only shows explicitly created namespaces. You can toggle the switch at the top left of the page to show both explicitly created namespaces and those automatically created by EMQX from the client_attrs.tns attribute.

Note

Automatically created namespaces cannot be edited in the Dashboard.

Configure a Namespace via Dashboard

You can configure a namespace when creating it, or edit it later. To edit an existing namespace, click Edit in the Actions column for that namespace.

  1. In the Create Namespace dialog, complete the following configuration:

    • Max Sessions: By default, this is set to infinity (unlimited). If enabled, you can set a specific number to limit the maximum number of sessions, preventing too many clients from occupying resources in a single namespace. When setting the max sessions, ensure it aligns with your cluster capacity to avoid rejected connections due to a low limit.

    • Tenant Limiter: This configuration controls the traffic for all clients within the namespace. For instance, when multiple clients share the same infrastructure, tenant rate limits ensure fair bandwidth distribution. By default, this is disabled. If enabled, you can configure the following rate limits:

      TIP

      For more details on this configuration, refer to the tooltips in the Dashboard.

      • Packet Publish Rate: Limits the bytes the current tenant can send to EMQX per second.
      • Packet Publish Burst: Allows additional bytes to be sent during bursts.
      • Messages Publish Rate: Limits the maximum number of messages a tenant can send per second.
      • Messages Publish Burst: Allows additional messages to be sent during bursts.

    • Client Limiter: This configuration controls traffic for individual clients. Client rate limiters are exclusive to each client, meaning the rate limit for one client won’t affect others. By default, this is disabled. If enabled, you can configure the following rate limits:

      TIP

      For more details on this configuration, refer to the tooltips in the Dashboard.

      • Packet Publish Rate: Limits the bytes a client can send to EMQX per second.
      • Packet Publish Burst: Allows additional bytes to be sent during bursts.
      • Messages Publish Rate: Limits the maximum number of messages a client can send per second.
      • Messages Publish Burst: Allows additional messages to be sent during bursts.

  2. After completing the configuration, click Create. The new namespace will appear in the list.

Delete a Namespace via Dashboard

To delete a namespace, click Delete in the Actions column. After confirming, the namespace will be permanently deleted.

Note

Before deleting a namespace, ensure that all active clients associated with the namespace are properly disconnected.

To view clients connected to a specific namespace, click Clients in the Actions column. You can also choose to bulk disconnect clients.

Configure and Manage Namespaces via REST API

TIP

Always check the corresponding Swagger API documentation for detailed and up-to-date request and response endpoint schemas. These are served by the Dashboard listeners at /api-docs.

Configure a Namespace via REST API

After the namespace is created, it can be configured using the PUT /mt/ns/<namespace>/config API.

Use this endpoint to set rate limits, session limits, and other namespace-specific settings. For example configurations, see the Configuration Example.

Configuration Example

This example configures a namespace using the REST API. Suppose you want to configure some specific rate limits for clients in the ns1 namespace. You also want to limit the maximum number of concurrent sessions allowed in this namespace.

Create the Namespace

Before applying any configuration, ensure the namespace is explicitly created:

bash
# No request body is needed
POST /mt/ns/ns1

Important Notice

If clients connect to a namespace before it is explicitly created, they will not inherit configurations such as rate limiters applied later. To enforce new settings, those clients must be manually disconnected and reconnected.

Configure Rate Limits and Session Limits

Once the namespace is created, apply the configuration using:

PUT /mt/ns/ns1/config

Request body:

json
{
  "limiter": {
    "client": {
      "bytes": {
        "rate": "10MB/10s",
        "burst": "200MB/1m"
      },
      "messages": {
        "rate": "3000/1s",
        "burst": "40/30s"
      }
    },
    "tenant": {
      "bytes": {
        "rate": "20MB/10s",
        "burst": "300MB/1m"
      },
      "messages": {
        "rate": "5000/1s",
        "burst": "60/30s"
      }
    }
  },
  "session": {
    "max_sessions": 100
  }
}

This configuration applies both client-specific and shared tenant-wide rate limits and sets a maximum of 100 sessions for the namespace.

Disable Namespace Rate Limiters

If you want to remove rate limiting entirely, you can update the configuration again and set the limiter types to "disabled":

PUT /mt/ns/ns1/config

Request body:

json
{
  "limiter": {
    "client": "disabled",
    "tenant": "disabled"
  }
}

Delete a Namespace via REST API

To remove a namespace and its associated configuration, you can use the DELETE /mt/ns/<namespace> API.

Note

Before deleting a namespace, ensure that all active clients associated with the namespace are properly disconnected. EMQX provides an API to bulk kick all sessions under a namespace, and this process should be triggered automatically when deleting a managed namespace.