CahitEy
asked on
centos ddos test and protection
is there any secure software for this ?
Do you mean something to prevent a centos server being DDoS attacked? IF so you can start with iptables (the firewall) this has some DDoS protection, such as rate limiting, flood prevention and black / white listing capabilities
ASKER
could you please describe a little more about how to ?
Assuming you are already using iptables as your firewall, you can add:
iptables -N syn-flood
iptables -A INPUT -p tcp --syn -j syn-flood
iptables -A syn-flood -m limit --limit 1/s --limit-burst 4 -j RETURN
iptables -A syn-flood -j DROP
or you may want to limit it to specific ports and / or hosts
iptables -N syn-flood
iptables -A INPUT -p tcp --syn -j syn-flood
iptables -A syn-flood -m limit --limit 1/s --limit-burst 4 -j RETURN
iptables -A syn-flood -j DROP
or you may want to limit it to specific ports and / or hosts
ASKER
how could i limit ddos to a specific port or host ?
i am using ip tables yes, but what exactly do this codes
i am using ip tables yes, but what exactly do this codes
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.