Apache SYN Flood Attack

[HaMeD0070]

Hello, my server is under SYN Floods Attacks.
There is many R ( Request Reading ) Proccess in apache Status. i searched the web and found a solution :

Add this commamds in on /etc/sysctl.conf

net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_tw_recycle = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 3

is these commands safe for cpanel and cloudlinux 7 enviroment ? can they cause any problem ?

Best Regards

i dont want cpanel / cloudlinux enviroment like updates , ... get problems with this change.

 

[HaMeD0070]

any help ? i need to stop SYN Attack
Best Regards

 

[Infopro]

Do you have CSF installed? It has SYN Flood protection built into it. Assuming you do, check your settings for this.

 

[HaMeD0070]

Hello Infopro,
Thank you.

Yes i installed CSF And SYN Flood Protect Enabeld. But Yet many R REQUEST Reading ( TIME WAIT ) Process Exist in Apache Status.

 

[cPanelLauren]

is these commands safe for cpanel and cloudlinux 7 enviroment ? can they cause any problem ?

They should be though, I can't tell you if they will be on your system specifically. You may want to check in with CSF to find what they recommend for configuring this: ConfigServer Community Forum - Index page