My site has been attacked by a couple of guys using a software. What the software basically does is: It sends so many requests within seconds to my site and in return requests all the files on the server which makes my connection limit reached within seconds. This consumes all the server resources and my site becomes unavailable to legitimate users. it is most likely a benchmarking but this site for the sake of closing legitimate connections. My question is can i use outbound or inbound bandwith as a protection? can you give some examples on how to use these values by arbitrary values and explain what it means? Or is there any suggextion you can make regarding this issue. I have gone through benchmark reports and see : * There must be some kind of Anti-DoS feature in IIS 6.0, it drops all connections when concurrent level is higher than 10. or can i set the litespeed so that when the no of connections /persecond is above 290 it will automatically restart it self?