DDoS protection module suggestion

pchychi at gmail.com pchychi at gmail.com
Wed Nov 3 06:57:58 MSK 2010


Why not utilize net filters/iptables for this? Setup a redirect to say localhost:81n then create a script to capture uri on each request, then use the information as u like... "Ddos mitigation based on client behavior and feedback loop which tells ur edge device how handle that traffic"

If u need Help just email me off list and I can help you, no charge.

------Original Message------
From: malte
To: nginx at nginx.org
ReplyTo: nginx at nginx.org
Subject: Re: DDoS protection module suggestion
Sent: Nov 2, 2010 8:21 PM

Yes, I am aware that you can limit the max connections with the limit
zone module.
What I'd like to do is establish an in-memory list of abusive IPs, which
gets no responses other than 503 errors no matter what request they
make. Since they are abusive, I want nginx to automatically spend the
least amount of processing power on them as possible.

Posted at Nginx Forum: http://forum.nginx.org/read.php?2,147105,147117#msg-147117

nginx mailing list
nginx at nginx.org

Sent from my BlackBerry device on the Rogers Wireless Network

More information about the nginx mailing list