Who does a DDoS attack for 16 hours?
EDIT:
Ok so I just realized this thread was old....
Webmaster Security
Website Currently under DoS Attack
Submitted by Strange Leader, 12-02-2016, 06:58 PM, Thread ID: 18186
Thread Closed
RE: Website Currently under DoS Attack 19-05-2016, 03:09 AM This post was last modified: 19-05-2016, 03:09 AM by LeadEnthusiast #31
19-05-2016, 03:09 AM
#31 This post was last modified: 19-05-2016, 03:09 AM by LeadEnthusiast
RE: Website Currently under DoS Attack 06-02-2017, 10:59 PM #32 cloudflare it will help, try fail2ban
06-02-2017, 10:59 PM
#32 cloudflare it will help, try fail2ban
RE: Website Currently under DoS Attack 25-03-2017, 05:04 PM #33 On the begin i get the same shit with ddos..
now I use an provider with DDOS-protection and install fail2ban on the server! Use cloudflare too and have an very small server for the emails.
And now i still running!
25-03-2017, 05:04 PM
#33 On the begin i get the same shit with ddos..
now I use an provider with DDOS-protection and install fail2ban on the server! Use cloudflare too and have an very small server for the emails.
And now i still running!
now I use an provider with DDOS-protection and install fail2ban on the server! Use cloudflare too and have an very small server for the emails.
And now i still running!
RE: Website Currently under DoS Attack 11-04-2017, 12:23 AM #34 fail2ban is ur best bet and cloudflare. hope it dosent happen againe
11-04-2017, 12:23 AM
#34 fail2ban is ur best bet and cloudflare. hope it dosent happen againe
RE: Website Currently under DoS Attack 28-05-2017, 12:03 PM #35 you can use cloudflare
28-05-2017, 12:03 PM
#35 you can use cloudflare
RE: Website Currently under DoS Attack 06-06-2017, 02:56 PM #36 12-02-2016, 06:58 PMStrangeLeader Wrote: So uh my forum has been down for like 16 hours now, and I was just wondering if anyone knew of any good security measures I could use to get it back.
think it's a layer 7 ddos attack, and that goes by cloudflare. Pretty sure it is just a couple kids having laughs from a competitor forum or something. Well, my forum is like brand new so it's kinda dumb but yeh. I mean I got cloudflare free but that obviously is not going to so a thing
Sorry kinda don't know anything about stopping ddos attacks
Check if the ddos is a multi IP or a single IP, if it's a single IP then just ban the IP from the VPS to stop any connections. They could easily just change their IP with a vpn, but I'd recommend adding some sort of code that lets them only connect every so often, or checks their browser or something.
06-06-2017, 02:56 PM
#36 12-02-2016, 06:58 PMStrangeLeader Wrote: So uh my forum has been down for like 16 hours now, and I was just wondering if anyone knew of any good security measures I could use to get it back.
think it's a layer 7 ddos attack, and that goes by cloudflare. Pretty sure it is just a couple kids having laughs from a competitor forum or something. Well, my forum is like brand new so it's kinda dumb but yeh. I mean I got cloudflare free but that obviously is not going to so a thing
Sorry kinda don't know anything about stopping ddos attacks
Check if the ddos is a multi IP or a single IP, if it's a single IP then just ban the IP from the VPS to stop any connections. They could easily just change their IP with a vpn, but I'd recommend adding some sort of code that lets them only connect every so often, or checks their browser or something.
RE: Website Currently under DoS Attack 13-06-2017, 02:33 PM #37 i use cloudflare to protect my pages against ddos - works good since 6 1/2 months..
13-06-2017, 02:33 PM
#37 i use cloudflare to protect my pages against ddos - works good since 6 1/2 months..
RE: Website Currently under DoS Attack 12-11-2017, 06:12 AM #38 personally i host forums on Blazing Fast due to their fast 10gbps up link and ddos security
12-11-2017, 06:12 AM
#38 personally i host forums on Blazing Fast due to their fast 10gbps up link and ddos security
RE: Website Currently under DoS Attack 21-12-2017, 09:16 AM #39 29-02-2016, 09:12 PMMercy Wrote: Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
Thanks for these tips. Will surely take a look for my clients.
21-12-2017, 09:16 AM
#39 29-02-2016, 09:12 PMMercy Wrote: Okay this going to be a long post on how to stop big DDoS attacks
1. Ban the User Agents
Find the user agents they are using to connect to your server. Some botnets will have similar user so take advantage of that. Use fail2ban or any other ip limiting system to ban the user agents. Use a wildcard.
2. Limit connection per ip
You could limit the connect per ip down to like 1 per 5 seconds. This will definitely effect the DDoS attack.
3. Simply ban the ips
You've been under attack for 16 hours. Get all IPs that have been hitting or pinging your server more than 5-10 hours and ban the ip from the server using fail2ban.
4. Mitigate it
Get another server to take the load. Your server doesn't have to take the hit if you have another server to take the hit instead.
5. Finally get a proper firewall
It can even be a Digitalocean server that is acting as a firewall. I have 3 layers on my site. It goes like this. Cloudflare ---> Firewall ---> Site
I change the name server to Cloudflare on the domain registrar, then from Cloudflare I point all my DNS records to my firewall. Then on my firewall I redirect them to my server IP. Therefore it goes through 2 layers before even reaching my origin server. Also make your firewall unpingable.
Might be some spelling or grammar mistakes, I'm very tired.
Try this and good luck.
Thanks for these tips. Will surely take a look for my clients.
RE: Website Currently under DoS Attack 28-12-2017, 12:28 AM #40 Looks like this thread is old, but gold. Still a lot of useful information here. I'm impressed and taking notes. No doubts
28-12-2017, 12:28 AM
#40 Looks like this thread is old, but gold. Still a lot of useful information here. I'm impressed and taking notes. No doubts