The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to find cause of high PPS on cpanel server?

Discussion in 'Security' started by postcd, Feb 1, 2015.

  1. postcd

    postcd Well-Known Member

    Joined:
    Oct 22, 2010
    Messages:
    621
    Likes Received:
    6
    Trophy Points:
    18
    Hello,

    linux centos cpanel virtual private server got like 200 000 pps during 5 seconds (Nodewatch told this), i would like to ask how on cpanel server i can discover if/which website/user account was source/destination of this. I know cpanel server do not have common access log, i mean all domains has their own logs,s o its too much logs.

    Maybe it was an attack on whole VPS IP, but just want to ask above question on what to look in case of such high PPS. thx
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,762
    Likes Received:
    662
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    It's likely easier to detect this type of attack from the network level. You can review your Apache domlogs, but it's likely not going to help pinpoint the source of the attack. You can search for "PPS attack ddos" on a search engine and you will get several results and threads on how to best mitigate such an attack.

    Thank you.
     
Loading...

Share This Page