somekind of attack to my server

Discussion in 'Install/Configuration' started by hichew, Apr 28, 2007.

  1. hichew

    hichew New Member

    I used to have massive dos attack to my server using different ip's

    the pattern was like:

    http://www.mydomain.com/?STOP-CONTENT-GOTOHELL.GoToHell

    And I have problem to mitigate this attack because all IP are different and connection is legit.


    Is there any performance impact to Litespeed? (slowing down the server?) roughly I get 100-200 requests per second.

    Do you think Litespeed can handle this? if yes how ?

    Thank you
  2. mistwang

    mistwang LiteSpeed Staff

    That's pretty easy to deal with, check out "Server"->"Security" tab, fine tune those per client connection controls.
    http://www.litespeedtech.com/docs/webserver/config/security/#perClientConnLimit
    Set "Dynamic Requests Per Second" to "1", "Connection Soft Limit" to "10", "Connection Hard Limit" to "20", change "Grace Period" and "Banned Period" as you wish.

    Another feature you can use is "Request filter", like mod_security in Apache, which can block those requests by checking for those signatures in the request header and body.
  3. hichew

    hichew New Member

    thank you!

Share This Page