Language Selection

English French German Italian Portuguese Spanish

Quick way to stop apache and connect floods with csf

Filed under
Howtos

 
Well first off this will only stop http or connect floods if you are having a real ddos problem you should be on a protected network otherwise there isnt much you can do server level if the attacks are pretty big. Using this method in combination with a protected network is the best way to go if you are having dos problems or host sites that do.
If you dont have CSF you can get it at www.configserver.com

This is real handy if your server is lagging badly, In some cases you have to tune down the connection limit to around 30 or less, depends how many ips hitting, etc; What this does is it kills apache, lowers the connection limit in csf.conf and restarts everything. When it does and lfd daemon runs again it will ban all of the ips with so many connections.
 
Code:

cp /etc/csf/csf.conf /etc/csf/csf.conf2
 
Code:

nano -w /etc/csf/csf.conf2
ctrl+w search for tracking, will be the second result. Turn your connection level to where you want it to be. Usually 30 gets the job done. You can always change it to suit the situation
 
Code:

nano -w /usr/bin/dos
insert
 
Code:

killall httpd ; cp -R /etc/csf/csf.conf /etc/csf/csf.conf1 ; cp -R /etc/csf/csf.conf2 /etc/csf/csf.conf ; csf -r ; service httpd restart
here is shortcut script to turn your connection limit back to normal
 
Code:

nano -w /usr/bin/dosoff
insert
 
Code:

cp -R /etc/csf/csf.conf1 /etc/csf/csf.conf ; csf -r
 
Code:

chmod 700 /usr/bin/dos /usr/bin/dosoff
Now you can go in your server and quickly fight it.
Just enter dos in your terminal to start it. And dosoff to set back to normal. Hope this can help someone

More in Tux Machines

LibreOffice 5.1 Officially Released with Redesigned User Interface, New Features

Today, February 10, The Document Foundation non-profit organization has proudly announced the release and immediate availability for download of the LibreOffice 5.1 open-source and cross-platform office suite for all supported platforms. Read more Also: LibreOffice 5.1: The premier open-source office suite just keeps getting better LibreOffice 5.1 Officially Released As The Best Open-Source Office Suite

Ubuntu 16.04 LTS Is Now Using the Latest Linux Kernel 4.4.1

The Ubuntu kernel team has upgraded the Linux kernel for Ubuntu 16.04 LTS (Xenial Xerus) to version 4.4.1 and is also tracking future updates for this branch. Read more

Putin's New Internet Czar Wants Apple and Google to Pay More Taxes

Microsoft, Google and other U.S. companies “reached the point of no return” when they complied with sanctions over Putin’s annexation of Crimea by halting all business with the peninsula, according to Klimenko. As a result, it’s “inevitable” Russia will switch state networks from Windows to an open-source system based on Linux, a move 22,000 municipal governments are prepared to make immediately, he said. Read more