How to Prevent DDoS with LiteSpeed

andych

Well-Known Member
#1
Hi, I would like to ask how to prevent DDoS with LiteSpeed?

I heard DDoS attacks can be mitigated by using Per Client Throttling, any samples for that configuration? (e.g. the recommended settings..)
 

NiteWave

Administrator
#2
please try yourself first:

lsws admin console->Server->Security->Per Client Throttling

give a screenshot of the settings you select, then I can advice how to adjust them based on my experience.
 

andych

Well-Known Member
#3


My plan was to limit the outgoing bandwidth to 1 MB/s for each client.

And since we're on a forum-based environment, so I think the incoming bandwidth is enough by 384 KB/s.

I'm still seeking for an advice though, since I'm still new in LiteSpeed. So I'd prefer to use your suggestion.
 

NiteWave

Administrator
#4
this is the default setting. here's my recommendation:

Static Requests/second: 10-20
Dynamic Requests/second:1-5
Connection Soft Limit:25
Connection Hard Limit:30
Block Bad Request:Yes

for inbound/outbound bandwidth, I've not much experience, you can experiment on it. if above settings already good enough, you no need apply for additional settings. anyway, it's up to you to watch closely and adjust these parameters to best fit your forum. Your requirement is to set
Outbound Bandwidth (bytes/sec):1M
Inbound Bandwidth (bytes/sec):384K
 
Top