Re: [users@httpd] Re: throttling IP addresses

A long time ago I played around with mod-cband. My memory of that is dim, but I thought it worth mentioning in case it would help. -- Mark H. Wood Lead Technology Analyst University Library Indiana University - Purdue University Indianapolis 755 W. Michigan Street Indianapolis, IN 46202 317-274

Re: [users@httpd] Re: throttling IP addresses

You can also have look at https://atomicorp.com/ I would recommend install ASL firewall. Thanks Deepak Sharma On Tue, Feb 2, 2016 at 10:49 PM, Wei-min Lee wrote: > There may not be a simple single solution for you. > > Iptables can be used to restrict packets that are coming in at an > excessiv

Re: [users@httpd] Re: throttling IP addresses

There may not be a simple single solution for you. Iptables can be used to restrict packets that are coming in at an excessively high rate Snort can be used to detect and manage intrusion attempts. ~Sent from my Huawei H1511~ On Feb 2, 2016 8:48 AM, "George Genovezos" wrote: > Yes, > > I am re

Re: [users@httpd] Re: throttling IP addresses

What works will depend on your OS, but you may want to look at fail2ban: I think it should be able to do the OS-level firewall management that you need. [your external firewall sounds fairly lame.] > Date: Tuesday, February 02, 2016 16:47:4

Re: [users@httpd] Re: throttling IP addresses

Yes, I am referring to an external firewall. So the idea is to use the web server to proxy external traffic and place an IP hit counter, that would throttle a DDOS attack. Even with a unix firewall, we still need a way to identify the threat and update the firewall. Do you have any thoughts on

Re: [users@httpd] Re: throttling IP addresses

I found a program, ConfigServer Firewall, that's pretty good at helping me secure my servers. It plays nice with iptables and it's fairly easy to configure. It has stuff that autoblocks IPs from bad people and can even download lists of bad IPs and auto-blocks them. On Mon, Feb 1, 2016 at 7:04

Re: [users@httpd] Re: throttling IP addresses

Are you referring to a 3rd-party firewall in front of the machine or the OS's firewall. Most *nix system (built-in) firewalls that I've dealt with have a lot of granularity and capabilities. They can certainly do an IP-specific (or range) blocks on one (or all) ports and some can do the throttling

Re: [users@httpd] Re: throttling IP addresses

Hi George, I would also check mod_qos for your use case! Luca Il 01 feb 2016 22:00, "George Genovezos" ha scritto: > Richard, > > I would agree with you that a more elegant solution is required. > Unfortunately the firewall will only block or allow a particular port. > > The correct solution wo

Re: [users@httpd] Re: throttling IP addresses

Richard, I would agree with you that a more elegant solution is required. Unfortunately the firewall will only block or allow a particular port. The correct solution would be to implement an IPS solution in front of a firewall, but where in the do more with less phase. George Genovezos Applic

Re: [users@httpd] Re: throttling IP addresses

> Date: Monday, February 01, 2016 19:52:51 + > From: George Genovezos > > Hi, > > I’m hoping someone can help with a problem I’m having. I need > a basic Ddos mitigation tool. Basically, either throttling back > certain IP addresses or blocking access after too many connections > per seco

[users@httpd] Re: throttling IP addresses

Hi, I’m hoping someone can help with a problem I’m having. I need a basic Ddos mitigation tool. Basically, either throttling back certain IP addresses or blocking access after too many connections per second. I know mod_evasive did this but the project, to my knowledge is deprecated. So to