What is the difference between RDB and AOF persistence?

RDB writes point-in-time snapshots on an interval, which is compact and fast to restore but can lose recent writes on a crash. AOF logs every write operation, giving better durability at the cost of larger files and slower restarts.

Which maxmemory-policy should I use?

For a pure cache, allkeys-lru or allkeys-lfu evict the least-used keys when memory is full. For a data store where losing keys is unacceptable, keep noeviction so Redis returns errors on writes instead of dropping data.

Why keep protected-mode enabled?

Protected-mode blocks connections from non-loopback addresses when no password and no explicit bind are set, preventing accidental exposure of an open Redis to the internet. Disable it only when you have a password and a firewall.

What does appendfsync everysec mean?

With AOF enabled, everysec flushes the append log to disk once per second, balancing durability and speed so you lose at most one second of writes on a crash. always is safest but slowest; no leaves flushing to the OS.

Is requirepass enough security on its own?

It is a baseline, but you should also bind to specific interfaces, run behind a firewall or private network, and consider TLS and ACL users on Redis 6 and later. Never expose an unauthenticated Redis to a public network.

Redis Config Builder

Email me this result

Get this tool's output sent to your inbox, plus one useful tool a week. No spam, unsubscribe any time.

A safe redis.conf in a few clicks

A default Redis listens broadly and persists nothing useful, which is fine for a quick test and dangerous in production. This builder generates a redis.conf with the settings that matter: a locked-down bind and password, a memory cap with the right eviction policy, and a persistence strategy that matches your use case.

How it works

The config is grouped into clear sections. Network sets bind, port, protected-mode, timeout, and tcp-keepalive. Security emits requirepass when you supply a password, or a commented reminder if you do not. Memory management writes your maxmemory limit and maxmemory-policy. Persistence changes shape with your choice: RDB writes the classic save snapshot rules and a dump.rdb; AOF turns on appendonly with your chosen appendfsync durability; “both” combines them; and “none” disables saving entirely with save "" for a pure cache. A logging block rounds it out. Everything is generated in your browser.

Tips and example

For a cache, set a real maxmemory (say 256mb) and allkeys-lru — without a limit Redis will grow until the host runs out of RAM.
For a durable store, use appendonly yes with appendfsync everysec and keep noeviction so writes fail loudly rather than silently dropping keys.
Always set requirepass to a long random string and never paste a real production password into a shared screen.
The dir defaults to /var/lib/redis; make sure the redis user owns that path before starting the server.