Control Web Panel
Security => CSF Firewall => Topic started by: duy13 on April 24, 2017, 06:52:15 AM
-
[AntiDDOS] How to Install vDDoS & CSF on CWP to AntiDDOS, DOS, SYN Flood, HTTP Floods attack
vDDoS Layer4 Mapping is a addon support for vDDoS Proxy Protection - Monitor processor logs and block it in Layer 3-4. This tool is product for those people ask me to add "BLOCK & CAPTCHA" on Layer 3-4 (Support Iptables CSF & CloudFlare API) for vDDoS Proxy Protection.
(https://lh3.googleusercontent.com/-UYG__192KaU/WHn2fzvhN9I/AAAAAAAAA_s/mYRsuEKbizQnjCn-Nqx8dZdP_nq5lNzYACLcB/s900/vDDoS-layer4-mapping-iptables.png)
1. Install vDDoS Proxy Protection + CWP
Please visit Part 1: http://forum.centos-webpanel.com/how-to/(antiddos)-install-vddos-on-cwp-to-antiddos-dos-syn-flood-http-floods-attack/
2. Install vDDoS Layer4 Mapping
curl -L https://github.com/duy13/vDDoS-Layer4-Mapping/raw/master/vddos-layer4-mapping -o /usr/bin/vddos-layer4
chmod 700 /usr/bin/vddos-layer4
/usr/bin/vddos-layer4
Use vDDoS-Layer4-Mapping:
/usr/bin/vddos-layer4
(Choose options 5)
Welcome to vDDoS, a HTTP(S) DDoS Protection Reverse Proxy. Thank you for using!
Please choose vDDoS Layer 4 Running Mode:
CloudFlare Mode:
1. Enable Captcha-All-Country Mode (Recommend This Mode For Large DDoS Attacks)
2. Enable Monitor-vDDoS-logs-and-Captcha Mode
3. Enable Monitor-vDDoS-logs-and-Block Mode
4. Remove all rules exist on CloudFlare Firewall
CSF Mode:
5. Enable Monitor-vDDoS-logs-and-Block Mode
6. Remove all rules exist on CSF
End & Exit:
7. End All Process (Kill all Process Mode Running)
8. Exit
Enter Your Answer [1, 2, 3... or 8]:
DOS Flood Attack - Before using vDDoS Protection:
(https://lh4.googleusercontent.com/-7kRvHVkTbfc/WHn2ehiTR4I/AAAAAAAAA_k/ft08lx3ytPQDGbf4fujynMVKSURGNdO4gCLcB/s700/direct-web.i-com.cf-DDOS-Protection-for-Website-with-vDDoS-Proxy-Protection-vDDoS-Layer4-Mapping-vddos.voduy.com%2B%2528114%2529.png)
DOS Flood Attack - After using vDDoS Protection:
(https://lh5.googleusercontent.com/-wbC-MsjGW0c/WHn2gAhFJnI/AAAAAAAAA_w/M-X_Rh2KNysRsno1zgR0CbjFtBnF5ZIWQCLcB/s700/vddos-web.i-com.cf-DDOS-Protection-for-Website-with-vDDoS-Proxy-Protection-vDDoS-Layer4-Mapping-vddos.voduy.com%2B%2528116%2529.png)
View More Config: http://vddos.voduy.com
-
Great.
-
in https and centos 7 you must update nginx to 1.3 , becouse in nginx what to isntall not work openssl
-
How to install with already installed cwp7 with apache and Nginx Reverse Proxy?
Thanks
-
in https and centos 7 you must update nginx to 1.3 , becouse in nginx what to isntall not work openssl
Thanks for your report!
(https://lh4.googleusercontent.com/-QkWcG7YiXXs/WShAPXiIGdI/AAAAAAAABhc/nRt816TUTmkl0QNhWGt3up2hLN3gm65_wCLcB/s700/Screenshot%2B%2528396%2529.png)
vDDoS 1.12.0 or 1.13.0 still working perfectly HTTP/2 with Openssl 1.0.2k https://www.openssl.org/source/old/1.0.2/ openssl-1.0.2l will be update soon
How to install with already installed cwp7 with apache and Nginx Reverse Proxy?
Thanks
You can change default port of nginx or stop & remove nginx (using only Apache+vDDoS)
Or install vDDoS in other-server
-
I can install the vDDoS Proxy Protection after installing the CWP?
Problems will not be?
I did not quite understand how vDDoS works with nginx?
Should vDDoS listen on port 80? If so, how will the data be transferred from the vDDoS to the nginx configured on the non 80 port?
Is it possible to remove the vDDoS , if so, how?
Thank you!
-
I can install the vDDoS Proxy Protection after installing the CWP?
Problems will not be?
I did not quite understand how vDDoS works with nginx?
Should vDDoS listen on port 80? If so, how will the data be transferred from the vDDoS to the nginx configured on the non 80 port?
Is it possible to remove the vDDoS , if so, how?
Thank you!
1. vDDoS should be installed before installing other things (CWP, cPanel, VestaCP, LAMP, LEMP...)
(PS: But I try to install vDDoS after CWP is still successful-CentOS 7)
2. Nginx or Apache... running & listen on other-port /Example: 8080, 8443... Vddos listens at 80 and 443
3. Remove vDDoS:
vddos stop
rm -rf /usr/bin/vddos
rm -rf /vddos
rm -rf /usr/lib64/vddos/modules
rm -rf /var/log/vddos
rm -rf /var/cache/vddos
-
Very great! i am using it on a external openvz container with ovh antiddos game (udp/tcp) protection and have protected my 80/443 in firewall . . . so i do not need layer 4 addon?
it works like a charm
please bring updates . . . its nice
-
Verry thanks for a your HELP! :o :o ;D ;D
-
How to simulate DDOS for a test after installing this method?
-
Try ab tool:
ab -n100000 -c500 http://cloudflare-web.i-com.cf:8080/ # High load
-
centos 6 is supported?