DDoS Attack Log Analysis Question
Glen Lumanau
glen at lumanau.web.id
Sat Oct 10 07:10:50 MSD 2009
IMHO,
I have a bad experience using csf for a high traffic website.
Best Regards,
Glen Lumanau
-----Original Message-----
From: Chris Zimmerman <fud.theturtle at gmail.com>
Date: Fri, 9 Oct 2009 23:02:16
To: <nginx at sysoev.ru>
Subject: Re: DDoS Attack Log Analysis Question
Need a larger vps? Lol
If it's virtuozzo (perhaps Xen though I don't have a lot of experience that
that) your going to hit open file limits put on the instance as well. Even
with sophisticated software based firewalls you can hit arbitrary iptable
entry limits as well.
csf has a portflood feature that works fairly well that uses the ipt_recent
module
or there are connection based monitors such as dos-deflate for firewalling
ip's that reach connection thresholds.
Though really you connection limit was probably the biggest issue. I could
see nginx handling simple requests like that no sweat if you have caching
enabled.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx/attachments/20091010/8f0ae4c6/attachment.html>
More information about the nginx
mailing list