View Single Post
  #12  
Old 07-15-2009, 04:42 AM
mugo mugo is offline
Intangible Asset Appraiser
 
Join Date: Mar 2009
Location: Austin Tx
Posts: 1,973
HAProxy will help somewhat, it only passes through full requests, to the SYN floods just get mitigated, and dropped off easily, using little resources.
There is even a special config you can drop in place here. Basically, just have it listen on 80, and your webserver serving up on 81,8080, or some other port.

http://haproxy.1wt.eu/download/1.3/examples/antidos.cfg

a bit bout how it can help you, 1st post:
http://haproxy.1wt.eu/

Also uploaded an iptables script that blocks foreign countries, can REM out what you don't want to block:
http://www.speedfile.org/861541

__________________
This is the best signature in the world....Tribute!
(It is not the best signature in the world, no. This is just a tribute)



Last edited by mugo; 07-15-2009 at 04:47 AM.
Reply With Quote