Originally Posted by priceww
I need a DDoS protection solution for one week until my server settles and the fing ddosers learn that it doesn;t work.
can someone recommand me a solution thats less then $30 I install Dos_Defalte and Ddos_esisive no use. also tried APF.
It seems to be work well enough that you're looking elsewhere?
if you can give us an idea of how the attack is going down (eg. are they slamming apache, or are they just trying to saturate your bandwidth), from there, there are many users on this site that can at least give pointers.
For any time i've had attacks, I always put my hosting at staminus and they kept all the bad people away
What you could try todo that's free, though, is the following....
On the dos-deflate site, they have a copy of the netstat command they run that builds out their list, you could run it and find out how many connections these IP's are.
Eg...if all bots are making 50 connections each, but all your reg users are only making say 10, you could tell dos-deflate to lower it's threshhold to 50 or however many, and then you could knock the ip's out that way.
As for dos-evasive, you can tell dos_evasive to actually hand off the ip's it marks as attackers to iptables, so then they're blocked that way. In the dos_evasive documents there is a part about "Extra" commands you can put in your httpd.conf