Support

midulc · #11 06-09-2012, 10:50 AM

Have optimized ALL centos configuration based on all I could find on internet and the ddos still gets my ded down.
The cpu use goes full and the conection usage to 250 mbps. There are lots of SYN_rECEIVED packets.
There's no way to stop this... What to do?
Internet connection is 10gbps so that's not the problem, it's that cpu usage goes to the limit.

NiteWave · #12 06-09-2012, 08:52 PM

can you identify which process has high CPU usage, by "top -c" etc?

ddos usually last short time only, is your website DDOS'd continuously?

midulc · #13 06-09-2012, 09:12 PM

It's continuously behind a DDOS. I can't run that command as now the dedicated got blocked for so many traffic

webizen · #14 06-11-2012, 02:16 PM

again, you can order "Advanced Anti-DDoS Setup"
https://store.litespeedtech.com/store/cart.php?gid=5

midulc · #15 06-11-2012, 03:15 PM

I even set up the iptables to block ALL ALL THE REQUESTS ALL, iptables -i INPUT -j DROP and still got behind attack!

Conclusion: External firewall is the only solution.

webizen · #16 06-11-2012, 03:21 PM

or you can try our free service.

http://www.litespeedtech.com/litespe...y-service.html

webizen · #17 06-11-2012, 05:55 PM

Quote:

Originally Posted by midulc

...

Conclusion: External firewall is the only solution.

This is not necessarily true. Really depends on how iptables is setup.

semprot · #18 06-21-2012, 10:45 AM

Quote:

Originally Posted by webizen

again, you can order "Advanced Anti-DDoS Setup"
https://store.litespeedtech.com/store/cart.php?gid=5

I wonder if it is the same one as "LiteSpeed Anti-DDoS Appliance" here ?
http://www.litespeedtech.com/litespe...appliance.html

webizen · #19 06-21-2012, 01:30 PM

Quote:

Originally Posted by semprot

I wonder if it is the same one as "LiteSpeed Anti-DDoS Appliance" here ?
http://www.litespeedtech.com/litespe...appliance.html

They are different. LiteSpeed Anti-DDoS Appliance is more advanced dedicated device to handle larger attacks.