This is currently happening to my forum which fucking sucks.
It's been down for 2h and someone placed a 10GB attack. >.<
Webmaster Security
Website Currently under DoS Attack
Submitted by Strange Leader, 12-02-2016, 06:58 PM, Thread ID: 18186
Thread Closed
RE: Website Currently under DoS Attack 29-02-2016, 06:06 AM #11
29-02-2016, 06:06 AM
#11 RE: Website Currently under DoS Attack 29-02-2016, 06:13 AM #13 29-02-2016, 06:10 AMZenith Wrote: Cloudfare is really shit
If it is Layer 7, I would use Sucuri. It protects against that.
You probably already got support but eh just saying.
I looked at that, looks a bit pricy.
Any other services that do this, that have a free plan? :yus:
29-02-2016, 06:13 AM
#13 29-02-2016, 06:10 AMZenith Wrote: Cloudfare is really shit
If it is Layer 7, I would use Sucuri. It protects against that.
You probably already got support but eh just saying.
I looked at that, looks a bit pricy.
Any other services that do this, that have a free plan? :yus:
RE: Website Currently under DoS Attack 29-02-2016, 06:17 AM #14 29-02-2016, 06:13 AMTropical Wrote: 29-02-2016, 06:10 AMZenith Wrote: Cloudfare is really shit
If it is Layer 7, I would use Sucuri. It protects against that.
You probably already got support but eh just saying.
I looked at that, looks a bit pricy.
Any other services that do this, that have a free plan? :yus:
I do not know of a free plan. sorry. Idk which ones are good though. lol
![[Image: Yp8ZHSk.gif]](https://i.imgur.com/Yp8ZHSk.gif)
29-02-2016, 06:17 AM
#14 29-02-2016, 06:13 AMTropical Wrote:29-02-2016, 06:10 AMZenith Wrote: Cloudfare is really shit
If it is Layer 7, I would use Sucuri. It protects against that.
You probably already got support but eh just saying.
I looked at that, looks a bit pricy.
Any other services that do this, that have a free plan? :yus:
I do not know of a free plan. sorry. Idk which ones are good though. lol
RE: Website Currently under DoS Attack Yeah man we went with Sucuri for $20 a month, we have been doing fine. ![[Image: a6f058b4ad04d1c510114c9c3c19ccfd302d5e4d_hq.gif]](https://nulledbb.com/c/8f497ae52201c4e01f36931d1eb50cb3e2cee6ba/687474703a2f2f7061312e6e61727669692e636f6d2f353737372f613666303538623461643034643163353130313134633963336331396363666433303264356534645f68712e676966/a6f058b4ad04d1c510114c9c3c19ccfd302d5e4d_hq.gif)
Yeah man we went with Sucuri for $20 a month, we have been doing fine.
RE: Website Currently under DoS Attack 29-02-2016, 07:19 AM #16 29-02-2016, 06:41 AMStrange Leader Wrote: Yeah man we went with Sucuri for $20 a month, we have been doing fine.
Check your messages. :noh:
29-02-2016, 07:19 AM
#16 29-02-2016, 06:41 AMStrange Leader Wrote: Yeah man we went with Sucuri for $20 a month, we have been doing fine.
Check your messages. :noh:
RE: Website Currently under DoS Attack 29-02-2016, 09:12 PM #17 Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
29-02-2016, 09:12 PM
#17 Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
RE: Website Currently under DoS Attack 01-03-2016, 03:49 PM #18 Use Under Attack mode?
01-03-2016, 03:49 PM
#18 Use Under Attack mode?
RE: Website Currently under DoS Attack 29-02-2016, 09:12 PMGrowl Wrote: Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
I am actually gonna try some of these like mitigating the server when I get home. :yus:
29-02-2016, 09:12 PMGrowl Wrote: Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
I am actually gonna try some of these like mitigating the server when I get home. :yus:
RE: Website Currently under DoS Attack 01-03-2016, 04:42 PM #20 12-02-2016, 06:58 PMStrange Leader Wrote: So uh my forum has been down for like 16 hours now, and I was just wondering if anyone knew of any good security measures I could use to get it back.
think it's a layer 7 ddos attack, and that goes by cloudflare. Pretty sure it is just a couple kids having laughs from a competitor forum or something. Well, my forum is like brand new so it's kinda dumb but yeh. I mean I got cloudflare free but that obviously is not going to so a thing
Sorry kinda don't know anything about stopping ddos attacks
Stop using shit like cloudflare. If you really want help pm me on skype.
01-03-2016, 04:42 PM
#20 12-02-2016, 06:58 PMStrange Leader Wrote: So uh my forum has been down for like 16 hours now, and I was just wondering if anyone knew of any good security measures I could use to get it back.
think it's a layer 7 ddos attack, and that goes by cloudflare. Pretty sure it is just a couple kids having laughs from a competitor forum or something. Well, my forum is like brand new so it's kinda dumb but yeh. I mean I got cloudflare free but that obviously is not going to so a thing
Sorry kinda don't know anything about stopping ddos attacks
Stop using shit like cloudflare. If you really want help pm me on skype.