Apache2 Flood/DDOS Protection?

Discussion in 'Server Operation' started by badgerbox76, Mar 19, 2010.

  1. badgerbox76

    badgerbox76 Member

    I'm having big problems with flooding/DDOS attacks against Apache. It's a big hassle and a big problem. I don't want to watch the logs all day and pick out nasty IP addresses for iptables to block. So what kind of protection can I get? Thanks
    Last edited: Mar 19, 2010
  2. topdog

    topdog Active Member

    You can you mod_evasive as well as mod_security
  3. RogueCoder

    RogueCoder New Member

    Although I have no experience with DDoS attacks, could you not write a script which runs through your logs and adds any that make x number of requests in n minutes, then run it as a cron job?

    I never understood why somebody doesn't make a program to block anybody who requests more than say 100 resources in 1 minute, for say 5 minutes. Then run as a cron job every 5 minutes. This seems like it would mitigate a lot of damage caused by DDoS attacks.
  4. mmoore

    mmoore New Member

    There already are such programs such as this :). The company in the link has a very advanced Linux-based DDoS protection solution.
  5. longvnit

    longvnit New Member

Share This Page