Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Solutions for handling ddos attacks?

Discussion in 'Security' started by Mehrdad Tari, Jul 9, 2017.

  1. Mehrdad Tari

    Mehrdad Tari Member

    Joined:
    Nov 11, 2015
    Messages:
    9
    Likes Received:
    2
    Trophy Points:
    3
    Location:
    ایران
    cPanel Access Level:
    Root Administrator
    hello

    We provide shared hosting services
    Unfortunately, sometimes attacks deny the service to our servers
    The operating system firewall or CSF do not have the ability to handle the problem

    How can we fix this problem?
    We do not have a hardware firewall on the data center for some services
    How do we know which domain is affected by ATTAC?

    What do big web hosting companies do to Confront with Attak?

    thank you in advance
     
  2. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,484
    Likes Received:
    60
    Trophy Points:
    28
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hi,

    There are 2 ways to mitigate the problem through a firewall..
    1) Software Firewall : CSF can be used to mitigate it.
    2) Hardware Firewall: This is something that you will have to ask your server provider to assist with..
    Software firewall has limitation to handle big attacks, but hardware firewall does not..

    If you ask what the most of the big providers do, then the answer would be either they do the above solutions or they use CloudFlare for the domains to mitigate the attack.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    A similar question is found on the following thread:

    DOS attack on my site

    You may also want to consult with a qualified system administrator to determine how to best mitigate a specific attack. We provide a list of system administration service companies on the following URL should you decide to use one:

    System Administration Services | cPanel Forums

    Thank you.
     
  4. postcd

    postcd Well-Known Member

    Joined:
    Oct 22, 2010
    Messages:
    670
    Likes Received:
    11
    Trophy Points:
    68
    Make sure that you have "ipset" package installed by "yum" package manager and enabled in CSF config file:
    yum -y install ipset
    LF_IPSET="1" (in CSF config file)

    and then google: "csf ddos" to find out how to configure CSF

    Also another solution to the issue may be to buy ddos protected IP and hide your real cpanel server behind it using GRE tunnel, google: ddos protected IP gre cpanel

    Particular websites on cpanel server can also be put behind Cloudflare.com shield
     
Loading...

Share This Page