somekind of attack to my server

H

hichew

Active Member
#1
#1
I used to have massive dos attack to my server using different ip's

the pattern was like:

http://www.mydomain.com/?STOP-CONTENT-GOTOHELL.GoToHell

And I have problem to mitigate this attack because all IP are different and connection is legit.


Is there any performance impact to Litespeed? (slowing down the server?) roughly I get 100-200 requests per second.

Do you think Litespeed can handle this? if yes how ?

Thank you
 
M

mistwang

LiteSpeed Staff
#2
#2
That's pretty easy to deal with, check out "Server"->"Security" tab, fine tune those per client connection controls.
http://www.litespeedtech.com/docs/webserver/config/security/#perClientConnLimit
Set "Dynamic Requests Per Second" to "1", "Connection Soft Limit" to "10", "Connection Hard Limit" to "20", change "Grace Period" and "Banned Period" as you wish.

Another feature you can use is "Request filter", like mod_security in Apache, which can block those requests by checking for those signatures in the request header and body.
 
You must log in or register to reply here.
Top