DDOS Attack to http server and iptables doesn't help (i have access_log) [duplicate]

http iptables ddos

Talk to your provider (looks like OVH) about their anti-ddos protections on your system. Not all, but most of the reputable providers have ways they can help you with this. Aside from that, you might consider doing a fancy fail2ban rule that watches your web server logs for any client hitting that foro url and just automagically adding a IPTables rule for them. Aside from that, you can put something there ... perhaps a very small 1 byte file? Or put your webserver behind something like cloudflare or some other CDN service. Most of that traffic can be dealt with a handful of ways and it shouldn't put that much stress on your server or on you. Watch out for logfiles filling up your filesystem though! That can create a whole other problem that nobody wants.

check out this for more information on using fail2ban to protect apache from DoS attacks: https://apache.tutorials24x7.com/blog/protect-apache-from-brute-force-and-ddos-attacks-using-fail2ban

Related

How to implement a uptime-monitoring and forced shutdown after a defined uptime with notifications and countdown [closed]
How do you port forward a privileged sub-1024 port to a non-privileged 1024+ port with firewalld?
Ubuntu 20.04 routing for just one IP (in the same subnet) ends in "dev lo" instead "dev eth0", kubernetes worker node can't connect to master node
NFS: control file/folder access using groups on the server
Routing from mikrotik two IP addresses to same gateway
Postfix service enabled but won't start on reboot
How to scale OpenVPN when client-to-client is a must?
Apache 2 Fast CGI php issue
Zabbix 2.0: Regular Expression to extract value from a String for a trigger?
How to prevent remote access in iptables
how can I specify a list on the command line
Android ADT error, dx.jar was not loaded from the SDK folder