so how do you handle rate limiting when youre dealing with microservices?

were building out a new microservices architecture and one of the things I keep going back and forth on is how to effectively implement rate limiting. should it be handled at the api gateway level, or should each individual service be responsible for its own? what are the pros and cons youve seen with each approach in production? looking for some real-world insights here.