-
A little DoS protection. [KiwiGuard, PeerBlock etc]
Hey,
This is just a little bit of DoS protection, not anything big or special, but will stop flooders and people who use those DoS shitholes and booters.
Anyways, Here's a list of a few Anti DoS/DDoS programs.
KiwiGuard
PeerBlock
Beethink IP Blocker
ModSecurity
Ok, so that's DoS attacks sorted. Now, let's get on to exploits. You should get someone who is good with coding to check your CMS and make sure there are no exploits.
The DoS protection I showed you above, is just some basic DoS protection to get you started, but as your hotel grows, you will need much more protection.
You can also use D-Guard, it's quite effective, I don't think its free, and I'm looking for a Cracked download of D-Guard myself, if you do find it, share please :P
Anyways, that is it, enjoy :P
(Thanks to everyone who has provided links to other DoS/DDoS protections)
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
Thanks, Ill put it onto my webhosting site :P
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
Quote:
Originally Posted by
Divide
Thanks, Ill put it onto my webhosting site :P
No problem, happy to have helped you.
Don't forget to hit the like button please :P
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
Quote:
Originally Posted by
niels
loooool
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock]
Quote:
Originally Posted by
.::Arjan::.
Ill add this to the list.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Thank you, i am currently using Anti DDoS | DDos Protection for Windows Servers free downloads.
Didn't had any problems with it so far.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
I'm using IIS. People that try to dos are instantly blocked and redirected xD/
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Goodluck blocking booters with this.
This'll only stop http flooders, which maybe 20% of people use
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Jam32
Goodluck blocking booters with this.
This'll only stop http flooders, which maybe 20% of people use
I did say that in the thread, but D-Guard will stop booters.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Jam32
Thanks, And I think I just found D-Guard, will be adding all of those to the list.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Just only bought an VPS on Limestone.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
D-Guard is out as free download, lols :)
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Giles121
D-Guard Cracked - Blabla
Enjoy your infraction (Rule 21) :D
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Dam password ive only just realized >_>
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Thanks, already knew about those but thanks. And just saying, most of those don't block DoS instead they block ip's that have many connections towards the server, sometimes might be a user.. also D-Guard works great just no actual cracked one's out there.
Quote:
Originally Posted by
LucasReis
Just only bought an VPS on Limestone.
Also, not to be rude but I don't remember you being asked that, and I remember them selling Dedi's not VPS's but ok.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Jam32
Do I really have to spell this out?
707411Y 1337 4N0NYM0U5 H4X0R (12 Year Old with a computer and money.) > Booter > *100mBps Signal* --------> [25mBps Mode *SIGNAL HITS*] < Router > Server
If it doesn't make sense, I'm saying that the BOOTERS ONLY HIT MODEMS WHICH OVERLOAD THE CONNECTION. How do I know this? I used to home-host. Whenever someone hit my network, all of the computers couldn't get online. If it hit the server, like HTTP flooding does, then the xbox and laptops of my home would be able to get online.
That's how I know it's the modem. It might also be the router.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
FullmetalPride
Do I really have to spell this out?
707411Y 1337 4N0NYM0U5 H4X0R (12 Year Old with a computer and money.) > Booter > *100mBps Signal* --------> [25mBps Mode *SIGNAL HITS*] < Router > Server
If it doesn't make sense, I'm saying that the BOOTERS ONLY HIT MODEMS WHICH OVERLOAD THE CONNECTION. How do I know this? I used to home-host. Whenever someone hit my network, all of the computers couldn't get online. If it hit the server, like HTTP flooding does, then the xbox and laptops of my home would be able to get online.
That's how I know it's the modem. It might also be the router.
What the actual fuck are you on about?
Quote:
BOOTERS ONLY HIT MODEMS WHICH OVERLOAD THE CONNECTION.
No shit. Of course a booter hits the modem. How else would they bring down home connections...
But, booters can and are used to take down sites for about 300 seconds, if that's what you're getting at?
I seriously have no clue what you're getting at, but i'd like to know who shat in your cornflakes :s
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
I think software anti ddos = bullshit
any an hardware firewall block ddos connections
love cisco firewall hardware
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Giles121
Password for this please?
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Monsma
I think software anti ddos = bullshit
any an hardware firewall block ddos connections
Your right. Hardware firewalls are the best available.
Minor software simply block packetflooders/httpflooders etc
However decent firewalls costs an absolute bomb.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Jam32
Your right. Hardware firewalls are the best available.
Minor software simply block packetflooders/httpflooders etc
However decent firewalls costs an absolute bomb.
if you buy a server and you place it in a datacenter you buy cisco hardware, the first cost is the most expensive then you only earn money
-
Quote:
Originally Posted by
Jam32
What the actual fuck are you on about?
No shit. Of course a booter hits the modem. How else would they bring down home connections...
But, booters can and are used to take down sites for about 300 seconds, if that's what you're getting at?
I seriously have no clue what you're getting at, but i'd like to know who shat in your cornflakes :s
You just said that these would "help protect against booters." Or something.
It won't. THAT'S WHAT IM GETTING AT, MATE.
-
Quote:
Originally Posted by
spatti88
Because I'm definitely going to give that much money for a fricking Webhost.
IF YOU ARE ON A VPS, AND YOU ARE GETTING ATTACKED, SWITCH YOUR HOST.
Don't let them charge you for a server if they're not even going to try and help you with this attack. If they're giving you bullshit like 'oh we can't do anything about that. Sorry.' They're wrong. They totally CAN do something about that. If they can't, then you really need to switch, it's probably because they're a reseller. BUY FROM THE BIG COMPANIES. I'm serious. When it comes to this, go enterprise. The bigger, the friendlier, and the more expertise. About half of those hosts are built by teenagers. Not even jokin! EpicHosts, EmpireHosts, just a few examples. Epic is a scam anyways, your VPS gets cancelled or its just offline. Back to the topic, the datacenters where the big business ones are hosted have huge uplinks, NO MATTER WHAT. That uplink means traffic can be absorbed without overloading. Also on that note, VPSs are hosted on big servers. It's like Inception, a server within a server. This means that this software can be used to absorb the booter attacks. The real server acts as a modem/router, and since a VPSs IP is different than the actual servers IP, the software can be used to block those attacks, since it hasn't hit your server at that point yet. Just a word of advice. BUY BIG, NOT CHEAP. THE CHEAPER, THE WORSE.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
neto737
Password for this please?
Password: "buyitifyouwantitthatbad"
Also, these programs don't actually help much. Personally, I'd suggest to just stick with CloudFlare.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Sean
Password: "buyitifyouwantitthatbad"
Also, these programs don't actually help much. Personally, I'd suggest to just stick with CloudFlare.
I have only used Kiwiguard, and Cloudflare in my entire life, and I uninstalled KiwiGuard because it did always block my IP :I
Like Sean said, stay with Cloudflare, it's the best you can get for your website.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
FullmetalPride
You just said that these would "help protect against booters." Or something.
It won't. THAT'S WHAT IM GETTING AT, MATE.
woahhh, whoever took a shit in your curry musta had some bad bug.
Calm the fuck down
I've never used it, but I've seen people say(going by their word) that this helps block shells.
As far as I know, it can be used on apache servers to block certain php bits in common shells such as c99.php Weather it works or Not I don't know. I have no reason to test it, but I have no reason to keep quiet and not share it.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
mod_security is not for ddos, its an application based security tool to stop exploits if you want something for apache that blocks then you'll want ddos_deflate.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Don't bother looking for D-Guard I baught it for 950$ and it doesn't work as well as I thought it did, you'd need 2GBPS uplink to your server, for it to actually help, and that's a little :glare:
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
iBling14
Don't bother looking for D-Guard I baught it for 950$ and it doesn't work as well as I thought it did, you'd need 2GBPS uplink to your server, for it to actually help, and that's a little :glare:
Would have probably been cheaper to rent a hardware Cisco firewall system from your provider!
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
iBling14
Don't bother looking for D-Guard I baught it for 950$ and it doesn't work as well as I thought it did, you'd need 2GBPS uplink to your server, for it to actually help, and that's a little :glare:
Ouch, what a waste of money.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
FullmetalPride
Because I'm definitely going to give that much money for a fricking Webhost.
IF YOU ARE ON A VPS, AND YOU ARE GETTING ATTACKED, SWITCH YOUR HOST.
Don't let them charge you for a server if they're not even going to try and help you with this attack. If they're giving you bullshit like 'oh we can't do anything about that. Sorry.' They're wrong. They totally CAN do something about that. If they can't, then you really need to switch, it's probably because they're a reseller. BUY FROM THE BIG COMPANIES. I'm serious. When it comes to this, go enterprise. The bigger, the friendlier, and the more expertise. About half of those hosts are built by teenagers. Not even jokin! EpicHosts, EmpireHosts, just a few examples. Epic is a scam anyways, your VPS gets cancelled or its just offline. Back to the topic, the datacenters where the big business ones are hosted have huge uplinks, NO MATTER WHAT. That uplink means traffic can be absorbed without overloading. Also on that note, VPSs are hosted on big servers. It's like Inception, a server within a server. This means that this software can be used to absorb the booter attacks. The real server acts as a modem/router, and since a VPSs IP is different than the actual servers IP, the software can be used to block those attacks, since it hasn't hit your server at that point yet. Just a word of advice. BUY BIG, NOT CHEAP. THE CHEAPER, THE WORSE.
Your posts make me giggle with how misinformed and stupid you are.
As for the thread;
*drum roll* ...
There's no such thing as DDoS protection software. If you want DDoS protection you must have hardware more capable than the attack; This is where DDoS protected server hosting companies come in. DDoS protected hosts' have the bandwidth, connection and hardware capable of taking on attacks and dealing with them. You can not stop UPD data being sent to a server, even if you have a hardware firewall, that will still be hit offline before it hits your server. However that is retrospective to the size of the attack; For example. If a server with a 1Gbit uplink is sent a 100mbit attack, then the server will go offline - It's being flooded with packets. A hardware firewall can counteract this attack as it has more resources and bandwidth VS the attack being given. However if a 2 Gbit attack was being sent, then when the packets hit the hardware firewall it will be 'knocked offline'.
The real solution to an attack is to grow the fuck up. I really can't believe people are so pathetic and shallow enough to attack other hotels. It's a sad state of afairs when hotels must resort to attacking each other because the hotels they own suck ass and no body wants to join them. Or because they enjoy the power trip and making servers go offline. Again, as always. This is another reminder that this community has gone to shit.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Matthew
Your posts make me giggle with how misinformed and stupid you are.
As for the thread;
*drum roll* ...
There's no such thing as DDoS protection software. If you want DDoS protection you must have hardware more capable than the attack; This is where DDoS protected server hosting companies come in. DDoS protected hosts' have the bandwidth, connection and hardware capable of taking on attacks and dealing with them. You can not stop UPD data being sent to a server, even if you have a hardware firewall, that will still be hit offline before it hits your server. However that is retrospective to the size of the attack; For example. If a server with a 1Gbit uplink is sent a 100mbit attack, then the server will go offline - It's being flooded with packets. A hardware firewall can counteract this attack as it has more resources and bandwidth VS the attack being given. However if a 2 Gbit attack was being sent, then when the packets hit the hardware firewall it will be 'knocked offline'.
The real solution to an attack is to grow the fuck up. I really can't believe people are so pathetic and shallow enough to attack other hotels. It's a sad state of afairs when hotels must resort to attacking each other because the hotels they own suck ass and no body wants to join them. Or because they enjoy the power trip and making servers go offline. Again, as always. This is another reminder that this community has gone to shit.
What do you think is on these hardware firewall systems? They don't just magically mitigate attacks, they mitigate attacks with the software that is loaded onto the hardware.
It isn't software you can just stick on your server but it is still software.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Hejula
What do you think is on these hardware firewall systems? They don't just magically mitigate attacks, they mitigate attacks with the software that is loaded onto the hardware.
It isn't software you can just stick on your server but it is still software.
Software on the server operating system level. Not network hardware.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
mfw people think software protects against DDOS
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
AWA
mfw people think software protects against DDOS
I don't know, but I've always used a limited connections script when I had a hotel hosted, in my server and CMS. It'll limit the connections from an single IP address and close the excessive connections.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
Hejula
Would have probably been cheaper to rent a hardware Cisco firewall system from your provider!
I know now lol, Gladly there is a 24 hour refund policy on that :w00t:
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
cisco routers or switches should do the trick...decent enough hardware firewall which has packet filtering.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
To be honest this isn't making sense a bit.
If you just install IIS web server then you are quicker off.
You are now wasting space on downloading many Anti-ddos programs when the anti-ddos is implemented in to IIS.
So rather prefer IIS to be honest it doesn't take any space and it's the best and it's better that last off.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
I'm sure what others are trying to infer is that these are all unnecessary to aid the mitigation of just Denial of Service attacks - your webserver can be capable of doing so, itself. For DDoS, however, prevention at the application level won't even touch the network side of things. Your options are as follows;
Keep your IP address secret and choose Cloudflare. The free version is good, and the prices aren't bad either.
OR
Choose a well-established host, capable of mitigating attacks and boasting enterprise hardware w/ firewalls. It may cost a little more, but for the money many of you make on these 'retros', you'd be damned if you can't afford a little extra.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Nice, but as a webmaster if you simply setup cloudflare correctly and modify the PHP configuration you're able to easily hide the IP (I setup cloudflare for a forum then it got hit constantly with 130Mbit Ddos' nullrouting the IP so I let someone edit the configuration and it worked perfectly). Although these programs are good; in the sense you're only being hit on port 80 then sure go ahead but if they're sending SSYN attacks then you're not going to get much out of them hence a hardware firewall is ultimately the only way you're going to completely if not partially stop all attacks seen as it route's through the network. IIS+ Cloudflare + Hardware firewall = Ultimate protection against most attacks.
-
Re: A little DoS protection. [KiwiGuard, PeerBlock etc]
Quote:
Originally Posted by
pixelpro321
Nice, but as a webmaster if you simply setup cloudflare correctly and modify the PHP configuration you're able to easily hide the IP (I setup cloudflare for a forum then it got hit constantly with 130Mbit Ddos' nullrouting the IP so I let someone edit the configuration and it worked perfectly). Although these programs are good; in the sense you're only being hit on port 80 then sure go ahead but if they're sending SSYN attacks then you're not going to get much out of them hence a hardware firewall is ultimately the only way you're going to completely if not partially stop all attacks seen as it route's through the network. IIS+ Cloudflare + Hardware firewall = Ultimate protection against most attacks.
This is true, but it spends a lot off money to buy it, you can almost buy a proxy that is connected with your dedicated server, you can use these for your hotel whatever, and if people ddossing it has no effect. Some hotels use this.
