29 messages in ru.sysoev.nginxRe: DDoS protection module suggestion| From | Sent On | Attachments |
|---|---|---|
| malte | Nov 2, 2010 7:18 pm | |
| Weibin Yao | Nov 2, 2010 7:54 pm | |
| malte | Nov 2, 2010 8:21 pm | |
| pchy...@gmail.com | Nov 2, 2010 8:57 pm | |
| malte | Nov 3, 2010 2:00 pm | |
| unclepieman | Nov 3, 2010 2:14 pm | |
| Rainer Duffner | Nov 3, 2010 2:38 pm | |
| malte | Nov 3, 2010 7:22 pm | |
| malte | Nov 3, 2010 7:30 pm | |
| Redd Vinylene | Nov 4, 2010 1:48 am | |
| malte | Nov 4, 2010 12:47 pm | |
| Weibin Yao | Nov 4, 2010 7:17 pm | |
| Payam Chychi | Nov 4, 2010 9:03 pm | |
| Weibin Yao | Nov 4, 2010 10:02 pm | |
| malte | Nov 4, 2010 10:58 pm | |
| Payam Chychi | Nov 5, 2010 12:29 am | |
| Weibin Yao | Nov 5, 2010 2:32 am | |
| Weibin Yao | Nov 5, 2010 2:51 am | |
| Eugaia | Nov 5, 2010 3:36 am | |
| 姚伟斌 | Nov 5, 2010 5:47 am | |
| malte | Nov 5, 2010 9:10 am | |
| malte | Nov 5, 2010 9:15 am | |
| Payam Chychi | Nov 5, 2010 10:02 am | |
| malte | Nov 5, 2010 2:51 pm | |
| malte | Nov 5, 2010 2:52 pm | |
| 姚伟斌 | Nov 5, 2010 6:44 pm | |
| ken107 | Dec 26, 2010 1:48 am | |
| Weibin Yao | Dec 26, 2010 6:25 pm | |
| Waleed G. | Mar 25, 2012 10:03 am |
| Subject: | Re: DDoS protection module suggestion | |
|---|---|---|
| From: | malte (ngin...@nginx.us) | |
| Date: | Nov 4, 2010 10:58:08 pm | |
| List: | ru.sysoev.nginx | |
Weibin Yao Wrote:
We are facing the similar DDOS situation to you. I'm developing a module which can deny the individual IPs. The module can get the IPs with a POST request from a commander server in the intranet. If you have some suggestions, you can contact to me.
The module will be here: https://github.com/yaoweibin/nginx_limit_access_mo dule, but I need some more days to finish it.
Wonderful! Being able to interrogate the server for a list of bad IPs is an excellent idea, it would allow people to make their own firewall-block scripts etc.
The main suggestion I have is that the module supports this kind of rule: If an IP has requested more than X pages in the last Y seconds, then serve only 503 errors to that IP for the next Z seconds, and use at most W megabytes of RAM for the bad-IP pool.
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,147105,147863#msg-147863
_______________________________________________ nginx mailing list ngi...@nginx.org http://nginx.org/mailman/listinfo/nginx