uk1900
asked on
stop floading http request
since 5 weeks now ,some one is sending 100s of http request per second and caused the shut down of my forum several times.
is there a way to automaticaly stop this type of attacks?
or a php page that can blcok the ip?
any solution ...
is there a way to automaticaly stop this type of attacks?
or a php page that can blcok the ip?
any solution ...
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
..if it's PHPBB, try this: http://www.seo-guy.com/forum/archive/index.php/t-5484.html
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
hi guys,
I have vbulletin forum running in VPS. virtuozzo with plesk
about the Firewall Setup:
---------------------
Firewall is not active now. To activate firewall choose one of firewall operation modes.
Select firewall mode
Normal firewall mode
Advanced firewall mode with default policy Accept
Advanced firewall mode with default policy Drop
----------------------
?
I have vbulletin forum running in VPS. virtuozzo with plesk
about the Firewall Setup:
---------------------
Firewall is not active now. To activate firewall choose one of firewall operation modes.
Select firewall mode
Normal firewall mode
Advanced firewall mode with default policy Accept
Advanced firewall mode with default policy Drop
----------------------
?
I'm not sure what the firewall's like..
as you currently have no firewall, you can use either option:
1) activate the firewall and choose default accept .. then implement the DoS prevention
2) activate the firewall and choose default drop.. then open the ports which vbulletin needs (probably 80 for http and maybe ftp).. then then implement the DoS prevention.
2 would be more secure, but more work.. but at least you'd be more secure :)
as you currently have no firewall, you can use either option:
1) activate the firewall and choose default accept .. then implement the DoS prevention
2) activate the firewall and choose default drop.. then open the ports which vbulletin needs (probably 80 for http and maybe ftp).. then then implement the DoS prevention.
2 would be more secure, but more work.. but at least you'd be more secure :)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have no idea how I can implement the DoS prevention!
I clicked on add rule: I got what u see in the: Snippet u can see what
Add Rule
General Settings
Name*
Policy Accept Drop Reject
Protocol tcp udp
Source Address and Netmask
Source Port or Port Range
Destination Address and Netmask
Destination Port or Port Range
Enable
Chain Input Output Forward
The rule's position in the chain
ASKER
thank you khaledf,
I will check that
I will check that
ASKER
any one know how to install mod_evasive ?
What's the forum platform? there's code written for PHPBB which blocks spambots registering.. so doing this may help.. as it could block the IP addresses of other miscreants.. assuming you can't get the host to implement DOS protection for you...