Control Web Panel
WebPanel => How to => Topic started by: brijendrasial on October 24, 2015, 07:12:32 PM
-
https://panel.bullten.net/knowledgebase/62/Mitigating-Layer7-HTTP-Flood-with-NginxplusFail2ban.html
-
thanks for the tip!
-
Thank you. This one works, but you need powerful CPU on each new attack.
(min 2 cores 2400GHz, depending on the attack volume)
Does not work with varnish is enabled, only nginx.
-
it works even when you turn on varnish
just add "set_real_ip_from SERVERIP;" to your nginx.conf
-
it works even when you turn on varnish
just add "set_real_ip_from SERVERIP;" to your nginx.conf
It will only work if you have varnish on the same server. Because if you use varnish in different server the connections are made from varnish server IP, so blocking the real visitor ip makes no sense.