All Questions
17 questions
0
votes
2
answers
949
views
How to detect an intranet SYN flood?
I got this problem: whenever I plug a Linux-server into the intranet, the whole network slows down and then die. Every ping/ssh connection between the intranet yields time out.
I unplugged it, then ...
- 131
2
votes
1
answer
773
views
TMG only windows 2008 r2 installing. NOT WORKING windows server 2012 r2
TMG Forefront only working windows server 2008 or 2008R2 - Not working windows server 2012.
How to mitigation windows server 2012R2 - Flood attacks,http attacks ?
Please help how to build windows ...
1
vote
0
answers
407
views
ICMP DDoS, proper ACL?
We are having about a 3-4Gbps ICMP flood on one of our servers and I wonder.. I have a 20gbps of DDoS protection but the proetction seems ineffective against ICMP funnily (it worked well to block a ...
- 119
1
vote
2
answers
5k
views
Firewall UDP Flood Dos/DDoS
Recently I have been suffering from what appears to be a UDP query flood attack. I am looking for a way to block the attack using a software firewall such as iptables, this should be possible, as ...
2
votes
3
answers
11k
views
IPTABLES block User-Agent
I get DDoS by the Wordpress Pingback BOTNET, now I want to block all client who contain Wordpress in there Useragents. For example:
WordPress/4.0; http://vk.lokos.net; verifying pingback from 107.158....
- 71
2
votes
2
answers
2k
views
Protection against scrapping with nginx
This morning we had a crawler going nuts on our server hitting our site almost 100 times per second.
We'd like to add a protection for this.
I guess I'' have to use HttpLimitReqModule but I don't ...
- 151
0
votes
4
answers
4k
views
apache being flooded?
I have a linux apache server which was running fine until a few days ago. What happened is from the access log there are lines like this, and the log file is growing by many lines every second. ...
- 23
2
votes
1
answer
5k
views
Windows Server 2008: Limit UDP/TCP packets per IP or ban
How I can limit UDP/TCP packets per IP send to my host (or better PORT) per second or minute ?
Would be nice to ban that IP for 12/24 hours or even for ever.
I got Windows Server 2008 and I'm very ...
- 71
2
votes
1
answer
1k
views
Mitigate HTTP connect floods with HAproxy + Apache
Our infrastructure consists of load balancers running HAProxy and Apache, which forward traffic to our app servers running just Apache. The past few days, we've been seeing connection floods which the ...
1
vote
1
answer
927
views
Why is FunWebProducts flooding my server?
I have received 47 000 hits in the past couple of hours from a single domain. I researched FunWebProducts but it seems to be some kind of a plugin, not sure how this is possible?
89.70.25.120 - - [03/...
- 1,927
1
vote
2
answers
2k
views
Monitor incoming TCP/UDP flood attack and graph it
I'm preparing a presentation on a security issue and want to include a demonstration. It won't be in real time, I just need to show some pictures of the results.
I have some VPSes that will perform ...
- 278
0
votes
4
answers
1k
views
The more secure iptables script imaginable. Does one exist? [closed]
I plan on buying a server soon. I'd like the server to be as secure as possible, only having POP3, SMTP, SSH and HTTP open. I know how to write an iptables script to only allow those connections and ...
- 19
2
votes
1
answer
3k
views
Packet flooding, is there any way to handle it?
My machine is being flooded with thousands of packets per second. They don't eat much bandwidth (60mbps out of 1gbit) but they damage system a lot by consuming a CPU responsible for handling network ...
- 41
1
vote
2
answers
2k
views
VPS under DDoS Attacks [duplicate]
Possible Duplicate:
Am I getting DDoSed, and what should I about it?
I'm using a 2 VPS Servers.
My domains was unvailable for some time. 1 hour, Somtimes 30 Minutes, and pages loading was realy ...
- 63
10
votes
4
answers
5k
views
Amazon EC2 bandwidth charges in case of unwanted incoming traffic(ddos/flood)?
What happens if my EC2 instance gets ddosed/flooded, which could potentially go up to tens of gigabytes an hour(and even more) of undesired incoming traffic, will i be charged for this traffic?
My ...
- 349
1
vote
2
answers
2k
views
UDP Flood/DoS or What?
Basically
I am receiving a lot of packets/data with random info on UDP protocol.
Packet has header and then a lot of XXXXXXX in it's content.
I assume it is UDP flood but it comes from different web/...
DanSPd
2
votes
4
answers
5k
views
How to protect Lighttpd from DOS attacks and flooding? [duplicate]
I have a problem with Lighttpd because someone started to use some Web downloader from very good connection and it blocked my whole website. Is there any way to protect Lighttpd from DDOS attacks and ...
- 1,135