Language Selection

English French German Italian Portuguese Spanish

Quick way to stop apache and connect floods with csf

Filed under
Howtos

 
Well first off this will only stop http or connect floods if you are having a real ddos problem you should be on a protected network otherwise there isnt much you can do server level if the attacks are pretty big. Using this method in combination with a protected network is the best way to go if you are having dos problems or host sites that do.
If you dont have CSF you can get it at www.configserver.com

This is real handy if your server is lagging badly, In some cases you have to tune down the connection limit to around 30 or less, depends how many ips hitting, etc; What this does is it kills apache, lowers the connection limit in csf.conf and restarts everything. When it does and lfd daemon runs again it will ban all of the ips with so many connections.
 
Code:

cp /etc/csf/csf.conf /etc/csf/csf.conf2
 
Code:

nano -w /etc/csf/csf.conf2
ctrl+w search for tracking, will be the second result. Turn your connection level to where you want it to be. Usually 30 gets the job done. You can always change it to suit the situation
 
Code:

nano -w /usr/bin/dos
insert
 
Code:

killall httpd ; cp -R /etc/csf/csf.conf /etc/csf/csf.conf1 ; cp -R /etc/csf/csf.conf2 /etc/csf/csf.conf ; csf -r ; service httpd restart
here is shortcut script to turn your connection limit back to normal
 
Code:

nano -w /usr/bin/dosoff
insert
 
Code:

cp -R /etc/csf/csf.conf1 /etc/csf/csf.conf ; csf -r
 
Code:

chmod 700 /usr/bin/dos /usr/bin/dosoff
Now you can go in your server and quickly fight it.
Just enter dos in your terminal to start it. And dosoff to set back to normal. Hope this can help someone

More in Tux Machines

Leftovers: Software

  • Flowblade Video Editor 1.12 Released, Adds 2 New Tools
    A shiny new version of open-source video editor Flowblade is available for download. Flowblade 1.12 introduces a pair of new tools. Progress has also been made towards creating a distribution agnostic .AppImage, though, alas, there are still kinks to be ironed out so you won’t find an app image of the current release.
  • Vivaldi 1.8 Web Browser Launch Imminent As First Release Candidate Is Out
    Vivaldi's Ruarí Ødegaard announced today, March 24, 2017, the release and immediate availability of the first Release Candidate of the forthcoming Vivaldi 1.8 web browser for all supported platforms. Dubbed as Vivaldi Snapshot 1.8.770.44, the Release Candidate of Vivaldi 1.8 is here to fix some last-minute bugs for the new History feature, which is the star of the new upcoming web browser release based on the latest Chromium 57 open-source project, as well as to improve the user interface zoom functionality.
  • Epiphany 3.24 Web Browser Has New Bookmarks UI, Improves Tracking Protection
    GNOME 3.24 arrived a couple of days ago, and it's the biggest release of the popular desktop environment so far, shipping with lots of new features and improvements across all of its applications and components. During its 6-month development cycle, we managed to cover all the major features implemented in the GNOME 3.24 desktop environment, but also the various improvements included in many of the apps that are usually distributed under the GNOME Stack umbrella.
  • Firefox Sync Support Is Coming to GNOME Web
    GNOME Web (aka the browser formerly known as Epiphany) is working to add Firefox Sync support, letting users keep bookmarks, history and open-tabs in sync across devices.

Games and CrossOver

Red Hat and Fedora

Android Leftovers