Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Block DDOS attack on a particular file?

Discussion in 'General Discussion' started by zubuz, Mar 29, 2009.

  1. zubuz

    zubuz Member

    Joined:
    Apr 29, 2003
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    151
    It appears that my server is the target of a moderate DDOS attack from IP addresses in Brazil. I've implemented mod_evasive, which is doing a good job of identifying the attack requests, but the rate of rotation of the IPs is too great for mod_evasive to be of any real assistance.

    The good news is that the DDOS attack is focused on requests for a couple of very specific .jpg files (which do not exist, of course).

    I'm running apf.

    Is there a way to configure my firewall to block http requests for these specific files, and/or to block only those IPs that request these specific files?

    Thanks in advance for your help and ideas.
     
    #1 zubuz, Mar 29, 2009
  2. rhenderson

    rhenderson Well-Known Member

    Joined:
    Apr 21, 2005
    Messages:
    785
    Likes Received:
    1
    Trophy Points:
    166
    Location:
    Oklahoma
    cPanel Access Level:
    Root Administrator
    You could run a free account from trafficcleaner.com and add the code and drop Brazil until the attack goes away since it is just on one site. We use trafficcleaner on our order site to help stop fraud. In 3 years we have only had 2 fraud orders and maxmind caught those.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 rhenderson, Mar 29, 2009
(You must log in or sign up to post here.)
Loading...
Similar Threads - Block DDOS attack
  1. Ladybird

    New Thread Unblock options for customer?

    Ladybird, Nov 11, 2018 at 12:52 AM, in forum: Security
    Replies:
    0
    Views:
    33
    Ladybird
    Nov 11, 2018 at 12:52 AM
  2. Mike S

    Rewrite forwarded email headers in EXIM to avoid strict DMARC/SPF block ?

    Mike S, Nov 8, 2018 at 9:53 AM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    86
    cPanelMichael
    Nov 12, 2018 at 8:40 AM
  3. Rens

    Block storage with cPanel

    Rens, Nov 5, 2018, in forum: General Discussion
    Replies:
    11
    Views:
    89
    cPanelLauren
    Nov 6, 2018 at 11:29 AM
  4. PSON

    FTP: Response: Your connection to this server has been blocked in this server's firewall.

    PSON, Nov 2, 2018, in forum: Security
    Replies:
    1
    Views:
    60
    cPanelMichael
    Nov 2, 2018
  5. Frankc

    CPHulk block own server IP address

    Frankc, Nov 1, 2018, in forum: Security
    Replies:
    1
    Views:
    67
    cPanelLauren
    Nov 2, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice