How to handle large numbers of connections from an IP address?

Solution 1:

maybe something like this will help. it will block any hosts, that open more than 150 connections within 2 minutes (180 seconds):

iptables -A INPUT -p tcp --dport 80 -i eth0 -m state --state NEW -m recent --set
iptables -A INPUT -p tcp --dport 80 -i eth0 -m state --state NEW -m recent --update --seconds 180 --hitcount 150 -j REJECT

you have to tune the script, so that normal users will never get blocked

memory&swap are full, can't ssh; any option other than physical restart?

IPv6 / IPv4 Third Form conversion?

Is it possible to find out what gateway is available on a network without prior knowledge?

Is it safe to transfer RAID 5 disks from one server to another?

What are the ramifications of increasing the maximum # of open file descriptors

How should I configure postfix to avoid sent emails bouncing because of "Invalid HELO name"

how do i find application name using GUID from error in event viewer on Windows Server 2003?

Force Apache directory listing even if DirectoryIndex files are present

How to perform a P2V conversion of a Windows Server 2008 R2 EFI system?

Puppet and templates : how to loop sequently and not randomly

What does "acl cdn_name hdr_beg(host) -i foor.bar.com" mean in HAProxy's configuration?

DRBD Not syncing between my nodes

How to handle large numbers of connections from an IP address?

Solution 1:

Related

Recent Posts