Benn
Reputation: 5023
Is there csf setting to block ip that require certain amount of requests?
Is there CSF setting that would help me block certain IP's if they hit homepage to many times. We are under attack and I see some IP's doing 300 - 4000 requests. Is there easier way to block those with CSF?
Upvotes: 0
Views: 2135
Answers (1)
Leo Prince
Reputation: 2050
You can set PORTFLOOD in the server. Try this and make changes in your csf.conf file
By dafualt
PORTFLOOD = ""
Change that to
PORTFLOOD = "80;tcp;20;5"
This means that if an IP is making 20 connections to port 80 in 5 seconds, Then csf will block that IP for at least 5 second after the last connection seen.
There will be a mandatory 5 second block before the block is lifted.
Upvotes: 2
Related Questions
- How to limit the amount of requests per ip in Node.JS?
- Is there a setting to set too many requests?
- AWS: How to Block IP making more than 1 request per second?
- Django deny large requests without nginx/apache
- Django and DRF, ip limit for request
- API Rate Limiting by IP
- Is there any way to (temporarily) block an IP based on the requests it makes?
- Requests limit per hour
- Limit TCP requests per IP