Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
litespeed_wiki:config:mitigating-ddos-attacks [2019/01/10 15:51] Jackson Zhang [Virtual Host-Level Bandwidth Throttling] |
litespeed_wiki:config:mitigating-ddos-attacks [2019/01/10 15:53] Jackson Zhang [Trusted IPs] |
||
---|---|---|---|
Line 169: | Line 169: | ||
=== Set Trusted IP on Virtual Host Level === | === Set Trusted IP on Virtual Host Level === | ||
- | Since LSWS 5.4RC1, LSWS added virtual host trusted IP support, where you use "Trusted 1.2.3.4, 5.6.7.8" in Virtual Host document root .htaccess to unblock blocked IP and make that IP trusted for that vhost. | + | Since LSWS 5.4RC1, LSWS added virtual host trusted IP support, where you use ''Trusted 1.2.3.4, 5.6.7.8'' in Virtual Host document root .htaccess to unblock blocked IP and make that IP trusted for that vhost. |
==== Drop or Deny ==== | ==== Drop or Deny ==== | ||
What if ModSecurity does a drop (TCP FIN) rather than deny for a trusted IP? The trusted list only has an effect on the "drop" action, but not on the "deny" action. A trusted IP won't be added to blacklist, but trust status has no effect on other actions. | What if ModSecurity does a drop (TCP FIN) rather than deny for a trusted IP? The trusted list only has an effect on the "drop" action, but not on the "deny" action. A trusted IP won't be added to blacklist, but trust status has no effect on other actions. |