Automatically modify iptables based on Apache log data to block badly behaved clients

linux apache-2.2 iptables

Solution 1:

You can use something like fail2ban, which IIRC, has an Apache log checker built in.

Solution 2:

You might want to consider using iptables to rate-limit incoming connections. Which in its most basic setting will give you the ability to limit incoming connections to a number per minute.

For example, you might want to only allow 10 pings per minute from a single IP address. It does get a little more sophisticated than that, with the option to set burst limits on top of long term average limits.

Some good instructions on setting it up http://kevin.vanzonneveld.net/techblog/article/block_brute_force_attacks_with_iptables/

Related

Windows services not starting automatically?
Restricting account logins using LDAP and PAM
Amazon EC2 spot instances - is there a catch?
How to set up my own full-featured certificate authority?
Mysqld.sock doesn't exist
What causes the MySQL error 1062 - duplicate entry when starting slave?
How to fix postfix: Sender address rejected: need fully-qualified address (in reply to RCPT TO command))?
Postfix - do not list domain example.com in BOTH mydestination and virtual_alias
What time zone is displayed in windows event logs? When viewing saved log from another machine?
How often should I scrub my RAID?
Not able to spoof MAC address in Kali Linux
How to download all files from a site? [duplicate]