Hello,
i want to make a good protection on my VPS, at the moment i use mod_evasive, but it isnt really good...
i have tested then this script here:
http://www.inetbase.com/scripts/ddos/install.sh (http://directadmin.com/forum/showthread.php?t=14500&highlight=mod_evasive).
have started it over ./ddos.sh -k 100 now i get always this message:
vps4:/usr/local/ddos# iptables: Bad rule (does a matching rule exist in that chain?)
does it means, that the ip what want to visit the site, is already blocked or does it mean that there is a error in config? i have already iptables --flush done but error comes again.
can i use this script with mod_evasive parallel?
i need a protection vs
- http
- syn
- udp
- icmp
- tcp and ipspoofing
have tested APF too, but there i have a other problem.
venet0:0 = serverip in the internet (91.xx.xx.xx)
venet0 = 127.0.0.1
when i enter venet0:0 at the apf config, they say me, that this cant be used. with venet0 starts apf, but its localhost :\
does anybody knows a good and easy ddos protection who protects vs that kind of attacks what i have told about?
and one other important question - where can i see the blocked ips at APF and where in iptables?
thanks for your answer
sorry for my bad english
i want to make a good protection on my VPS, at the moment i use mod_evasive, but it isnt really good...
i have tested then this script here:
http://www.inetbase.com/scripts/ddos/install.sh (http://directadmin.com/forum/showthread.php?t=14500&highlight=mod_evasive).
have started it over ./ddos.sh -k 100 now i get always this message:
vps4:/usr/local/ddos# iptables: Bad rule (does a matching rule exist in that chain?)
does it means, that the ip what want to visit the site, is already blocked or does it mean that there is a error in config? i have already iptables --flush done but error comes again.
can i use this script with mod_evasive parallel?
i need a protection vs
- http
- syn
- udp
- icmp
- tcp and ipspoofing
have tested APF too, but there i have a other problem.
venet0:0 = serverip in the internet (91.xx.xx.xx)
venet0 = 127.0.0.1
when i enter venet0:0 at the apf config, they say me, that this cant be used. with venet0 starts apf, but its localhost :\
does anybody knows a good and easy ddos protection who protects vs that kind of attacks what i have told about?
and one other important question - where can i see the blocked ips at APF and where in iptables?
thanks for your answer
sorry for my bad english