Two related problems, looking for advice: 1) The websites I offer from my virtual server are increasingly being hammered by exploitbots, sometimes driving the load average above 30. Many different sources, I assume virus-infected home computers in botnets looking for common weaknesses. What is the easiest way to thottle traffic from such machines, or detect similar "attack" requests (mysql exploits, for example) and blacklist the IP addresses they come from?
2) I run a Personal Telco access point, and am glad to serve my community. However, sometimes my guests use up most of my bandwidth. Is there an easy way to thottle the bandwidth feeding the access point (it is by itself on a private DMZ) to a reasonable fraction of my FIOS feed, say to 3mbps? Again, there are probably optimal strategies, but I'll take easy, good-enough and hard-to-screw-up for now. Keith -- Keith Lofstrom [email protected] _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
