Question DDos how can i limit number of time a ip can hit the server?

raykai · Aug 20, 2021

Hi im getting DDos and would need a way to block IPs after x number of requests in X amount of time.

Or is there another way of doing something to limit IPs from hitting the server?

My logs are full of ngix error such as

Code:

[alert] 27026#0: *19582 socket() failed (24: Too many open files) while connecting to upstream.
[crit] 27026#0: *12923 open() "/var/lib/nginx/proxy/4/36/0000000364" failed (24: Too many open files) while reading upstream.
27026#0: *12812 upstream timed out (110: Connection timed out) while reading response header from upstream.

Im getting so many hits that my websites are knocked offline. Any help would be appreciated.

raykai · Aug 20, 2021

i see there is this but thats for Windows I'm on Linux (Plesk for Windows) Limiting Bandwidth and Number of Connections to Websites

sebgonzes · Aug 20, 2021

raykai said:
Hi im getting DDos and would need a way to block IPs after x number of requests in X amount of time.

Or is there another way of doing something to limit IPs from hitting the server?

My logs are full of ngix error such as

Code:

[alert] 27026#0: *19582 socket() failed (24: Too many open files) while connecting to upstream. [crit] 27026#0: *12923 open() "/var/lib/nginx/proxy/4/36/0000000364" failed (24: Too many open files) while reading upstream. 27026#0: *12812 upstream timed out (110: Connection timed out) while reading response header from upstream.

Im getting so many hits that my websites are knocked offline. Any help would be appreciated.

use fail2ban filter.

raykai · Aug 20, 2021

sebgonzes said:
use fail2ban filter.

wich one? i have all the default ones on.

sebgonzes · Aug 20, 2021

Protect Web Servers from DDoS Attacks using Fail2ban

How to protect your website from DDoS Attacks using Open Source Software...? Fail2ban works in a similar way to mitigate DDoS attacks, as it also bans traffic to your web server.

sysopstechnix.com

raykai · Aug 20, 2021

So is there a guide on how to do this with the Plesk Fail2ban GUI pages?

sebgonzes · Aug 20, 2021

raykai said:
So is there a guide on how to do this with the Plesk Fail2ban GUI pages?

plesk have an fail2ban plugin, you should review jail available and adapt them if there are not what you need : Fail2Ban Jails Management

raykai · Aug 20, 2021

yes, I have it installed problem I have is there are no Ngnix Jails and no Ngnix Jails:

i know I can add custom filters...
Tools & Settings > IP Address Banning > Jails > Jail Filters > Add Jail Filter

But what do I add in here to solve my problem?

weltonw · Aug 20, 2021

You'll need to write your own jail filter to track requests by IP.

I would just raise the open file limit as a mitigation - you don't want your server going down from the either way. Then consider something like Cloudflare. Rate Limiting is best done as close to the client as possible.

danami · Aug 21, 2021

Our Juggernaut Firewall extension can deal with easily:

How can I block DDoS attacks using Juggernaut Firewall? - Knowledgebase - Danami

Question DDos how can i limit number of time a ip can hit the server?

raykai

Basic Pleskian

raykai

Basic Pleskian

sebgonzes

Silver Pleskian

raykai

Basic Pleskian

sebgonzes

Silver Pleskian

Protect Web Servers from DDoS Attacks using Fail2ban

raykai

Basic Pleskian

sebgonzes

Silver Pleskian

raykai

Basic Pleskian

weltonw

Regular Pleskian

danami

Silver Pleskian

Similar threads