Logo-amall

Protecting Nginx agains't HTTP Get ddos

Last active 5 days ago

13 replies

1 views

  • !!

    The goal here is to protect the server agains't basic type of layer7 ddos using crowdSEC

  • !!

    it gonna takes for hours

  • !!

    mount the disk and be sure it's the good one as i'm in raid

  • !!

    remove the firewall part from booting up

  • !!

    that's gonna be hell on earth

  • !!

    any other idea before i do it

  • !!

    because i would do anything exept goes through this again

  • II

    I'm trying to understand how your own home IP got a decision from crowdsec?

  • II

    cause if so there a 4h timer then you will be unbanned and get access again

  • !!

    i'm gonna dm u the ip

  • II

    Okay

  • !!

    i was able to optimise a bit how much request it can get from 1000r/sec to 5000r/sec but it can't handle the DDOS i'm sending (50 000 r/s) using a pool of 30k ip

    what other option do i have left ?
    i would like to setup a verification process for all new ip that doesn't load any php or heavy ressources. A static page capable of withstanding a lot of traffic

  • II

    You would have to code a custom captcha page, crowdsec isnt used for this so you would have to find a solution

Last active 5 days ago

13 replies

1 views