How to Prevent DDoS with LiteSpeed

Discussion in 'Install/Configuration' started by andych, May 14, 2013.

  1. andych

    andych New Member

    Hi, I would like to ask how to prevent DDoS with LiteSpeed?

    I heard DDoS attacks can be mitigated by using Per Client Throttling, any samples for that configuration? (e.g. the recommended settings..)
  2. NiteWave

    NiteWave Administrator

    please try yourself first:

    lsws admin console->Server->Security->Per Client Throttling

    give a screenshot of the settings you select, then I can advice how to adjust them based on my experience.
  3. andych

    andych New Member

    [​IMG]

    My plan was to limit the outgoing bandwidth to 1 MB/s for each client.

    And since we're on a forum-based environment, so I think the incoming bandwidth is enough by 384 KB/s.

    I'm still seeking for an advice though, since I'm still new in LiteSpeed. So I'd prefer to use your suggestion.
  4. NiteWave

    NiteWave Administrator

    this is the default setting. here's my recommendation:

    Static Requests/second: 10-20
    Dynamic Requests/second:1-5
    Connection Soft Limit:25
    Connection Hard Limit:30
    Block Bad Request:Yes

    for inbound/outbound bandwidth, I've not much experience, you can experiment on it. if above settings already good enough, you no need apply for additional settings. anyway, it's up to you to watch closely and adjust these parameters to best fit your forum. Your requirement is to set
    Outbound Bandwidth (bytes/sec):1M
    Inbound Bandwidth (bytes/sec):384K
  5. andych

    andych New Member

    Okay NiteWave, thank you for your recommended settings, I will implement and report you back if I had any issue :D

Share This Page