IP bloqueado ataque continua Prevencao Syn Flood

# Prevencao Syn Flood
http://www.forumcpanel.com.br/topic/2148-ip-bloqueado-ataque-continua/

iptables -N syn-flood
iptables -A INPUT -i eth0 -p tcp –syn -j syn-flood
iptables -A syn-flood -m limit –limit 10/s –limit-burst 24 -j RETURN
iptables -A syn-flood -j DROP

http://linuxthink.blogspot.com.br/2011/03/prevent-syn-floods-synrecv-attack-on.html

iptables -I INPUT -p tcp -m state –state NEW –dport 80 -m recent –name http_flood –set
iptables -I INPUT -p tcp -m state –state NEW –dport 80 -m recent –name http_flood –update –seconds 10 –hitcount 3 -j DROP
iptables -A INPUT -p tcp –dport 80 -j ACCEPT

Deixe um comentário