I use nginx in wheezy I am currently trying to use CSF but I'm having trouble me not block IP properly https://download.configserver.com/csf.tgz http://download.configserver.com/csf/readme.txt I am testing this formula but still not working maybe that is designed to centos Some tutorial antiDDOs that works?
I've been looking and it has worked this formula I do not know if you block other things, but at least stopped http and DDOS flood Code: SYNFLOOD = "0" SYNFLOOD_RATE = "100/s" SYNFLOOD_BURST = "150" currently the RATE is 100/s and BURST can upto 150. This can be varry from server to server. 3.8 To protect your server any specific port from DOS attacks, you can define it in PORTFLOOD tag. This option limits the number of connections per time interval that new connections can be made to specific ports. By default its empty and i did like to limit 20 connections per 5 sec to port 80 (webserver). Expand: My personal config Code: SYNFLOOD = "0" SYNFLOOD_RATE = "20/s" SYNFLOOD_BURST = "25" --------------------------------------------------------------------------------------------------------------------- Code: PORTFLOOD = "" It defines protect port 80 running on protocol tcp, 20 connections per 5 seconds. Use the same for more ports followed by semmi colon ;. 3.9 Define email address to which you need to get alerts and define email address to which you want to get. The change the bellow mail address to your required mail ID Expand: My personal config Code: PORTFLOOD = "80;tcp;20;5" more info http://forums.ultratechhost.com/thread-177.html
