Help me with problem ddos

Results 1 to 4 of 4
  1. #1
    Enthusiast lalapan is offline
    MemberRank
    Dec 2011 Join Date
    33Posts

    Help me with problem ddos

    My server was DDoS attack via port 80, is there a way to limit or prevent it?


  2. #2
    The One And Only DaMadBoy is offline
    MemberRank
    Jun 2009 Join Date
    Behind You!Location
    545Posts

    Re: Help me with problem ddos

    I was actually reading up on this myself for future reference and found this thread on a forum, maybe it can help you.

    How to detect a DDoS attack? - Web Hosting Talk

  3. #3
    Proficient Member Souris is offline
    MemberRank
    Feb 2009 Join Date
    167Posts

    Re: Help me with problem ddos

    Once you found the DDOS ips, as root use:
    Code:
    iptables -I INPUT -s 1.2.3.4 -j DROP
    You can specify netmasks to block large ranges of ips: 1.2.3.0/24 would block all ips from 1.2.3.0 to 1.2.3.255. Iptables is cleaned upon reboot or you can delete the rule by replacing "-I" by "-D" in the above command.

    This won't help if the DDOS is maxing your bandwidth, but this is unlikely as it requires really large botnet.

    Have a look at fail2ban to automate part of the protection.

  4. #4
    Member Allisandre is offline
    MemberRank
    Dec 2011 Join Date
    MichiganLocation
    68Posts

    Re: Help me with problem ddos

    Check to see if your modem has an option to block ping requests or detect and drop invalid packets and packet floods in the firewall settings. You might also be able to configure a software firewall to do this on your server.



Advertisement