Results 1 to 13 of 13
  1. #1

    Visitors get frequently locked out from my VPS.

    I host two websites, flash arcades, that receive together around 5000-7000 visits per day. The traffic is around 10GB per day and with a maximum number of around 50 simultaneous visitors online.

    The problem is that my websites is often inaccessible for me and my visitors.

    Almost all visitors come from two countries, Sweden and Finland, and I also live in Finland. When I'm locked out, I'm still usually able to access the websites through a proxy. The problem is not limited to my home connection as I've been frequently unable to access my websites from other computers located in Finland. However when I use a proxy or use a computer outside Finland, I am also sometimes unable to access those websites but it occurs rarely during the busy weekends.

    In addition, I'm always able to access WHM or Virtuozzo Control Panel from whatever computer.

    My provider is EuroVPS (VPS with WHM/cPanel) and they have been excellent otherwise in terms of support and reliability. However, they haven't been able to give a solution to this problem.

    The problem should not be lack of memory or CPU power. As memory is only used at max. 50% percent of my 512mb allocation and CPU is only clocking around 20% of the max. allocation. Bandwith usage is also at around 50 percent.


    Here's some excerpts from the httpd.conf file.

    Timeout 300
    KeepAlive ON
    MaxKeepAliveRequests 100
    KeepAliveTimeout 15
    MinSpareServers 5
    MaxSpareServers 10
    StartServers 5
    MaxClients 150
    MaxRequestsPerChild 0

    Do you guys any ideas what could be causing this and how to solve it?
    Why is users from certain geographic areas more prone for getting locked out?


    I probably have to hire an admin to look into this, but I wanted first to ask from a broader audience.


    Thank you in advance!


    Janne

  2. #2
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,080
    1) Lower the timeout to say 100

    2) Raise maxclients to around 300 (even just temp)

    3) Do you have mod_dosevasive if so disable it! It sounds like you may be having trouble with it and locking you out.

    The first 2 options probably won't help with this issue but mod_dos could be the cause.
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  3. #3
    Thanks for the tips.

    It sounds very logic that a ddos preventive measure could be behind this.

    Although I didn't find any references to mod_dosevasive in http.conf, so I do not believe it's even installed on this machine.


    This problem really starting to hurt me financially, thus I'm offering a $50 reward payable via PayPal to the person who can fix this issue.


  4. #4
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,080
    Does:
    cat /etc/httpd/conf//httpd.conf |grep mod_dos
    show anything? I would PM you but you have too few posts.
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  5. #5
    Nothing shows up when I run cat /etc/httpd/conf//httpd.conf |grep mod_dos

    Any other ideas? Anybody? Questions?

    As said, I'm giving out $50 for a solution to this problem.

  6. #6
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,080
    What error do you get when you cannot access it.
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  7. #7
    When using a browser;

    "Could not be found. Please check the name or try again later"


    Neither do I get any response when using ping. The query simply dies out.


    Could it be a DNS issue?

  8. #8
    When this happens, ask some one else to check the server for you. So you can make sure if its blocking you only or everyone. After this happen, how do you fix it ?


    Are you able to SSH to IP address of the server when this happen ?

  9. #9
    Hello,

    This surely most probalbly related to the ISP side. Please have a check if your servers IP is getting blocked.

  10. #10
    Quote Originally Posted by flashwebhost
    When this happens, ask some one else to check the server for you. So you can make sure if its blocking you only or everyone. After this happen, how do you fix it ?


    Are you able to SSH to IP address of the server when this happen ?
    As stated in my previous posts;

    I'm still usually able to access the websites through a proxy.
    I get blocked from other computers than my own. I've tried from a tleast 10 computers in Finland, and I frequently got blocked from all of them.

    I get less frequently blocked from when I access from my university in UK, but it happens neverthless. I've got reports from people in the US from not being able to access my websites.

    Yes, I'm always able to access the IP addresses of the server. It is only the websites that become unresponsive.



    Quote Originally Posted by codeguru
    Hello,

    This surely most probalbly related to the ISP side. Please have a check if your servers IP is getting blocked.


    I find it hard to believe because then pretty much every ISP in the world would have put restrictions on accessing my websites. The servers IP is not blocked! It is the websites that become unaccessible. I;m always able to access the server itself.

  11. #11
    So server is working fine when you are having problem.

    When you are having problem, login to server and try following commands and see if you are availble to acess the sites

    iptables -F
    service httpd restart

  12. #12
    Maybe that you've reached Linux TCP connections limit (65k).
    Code:
    netstat -ant | wc -l
    It will return you the current tcp connections count.

    Execute this command line too :
    Code:
    sysctl -a | grep tcp
    It will return the current kernel's tcp configuration

  13. #13
    Did you ever get this issue solved?
    Eleven2 Web Hosting - World-Wide Hosting, Done Right!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •