DDoS Attack Log Analysis Question

Glen Lumanau glen at lumanau.web.id
Sat Oct 10 07:10:50 MSD 2009

I have a bad experience using csf for a high traffic website. 

Best Regards,

Glen Lumanau

-----Original Message-----
From: Chris Zimmerman <fud.theturtle at gmail.com>
Date: Fri, 9 Oct 2009 23:02:16 
To: <nginx at sysoev.ru>
Subject: Re: DDoS Attack Log Analysis Question

Need a larger vps? Lol
If it's virtuozzo (perhaps Xen though I don't have a lot of experience that
that) your going to hit open file limits put on the instance as well. Even
with sophisticated software based firewalls you can hit arbitrary iptable
entry limits as well.

csf has a portflood feature that works fairly well that uses the ipt_recent
or there are connection based  monitors such as dos-deflate for firewalling
ip's that reach connection thresholds.

Though really you connection limit was probably the biggest issue. I could
see nginx handling simple requests like that no sweat if you have caching

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx/attachments/20091010/8f0ae4c6/attachment.html>

More information about the nginx mailing list