Forum

> > CS2D > Servers > (D)DoS Deflate
Forums overviewCS2D overview Servers overviewLog in to reply

English (D)DoS Deflate

15 replies
To the start Previous 1 Next To the start

old (D)DoS Deflate

Ajmin
User Off Offline

Quote
For long i was searching for a anti-[D]Dos/Dos.
Finally it came up to an end!
I have found one of the best anti-ddos.
The "DoS Deflate"!

(D)DoS Deflate is a lightweight bash shell script designed to assist in the process of blocking a dos. It utilizes the command below to create a list of IP addresses connected to the server, along with their total number of CONNECTIONS. It is one of the simplest and easiest to install solutions at the software level.

1
netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n

IP addresses with over a pre-configured number of CONNECTIONS are automatically blocked in the server's firewall, which can be direct iptables.

> Notable Features

• It is possible to whitelist IP addresses, via /usr/local/ddos/ignore.ip.list.
• Simple configuration file: /usr/local/ddos/ddos.conf
• IP addresses are automatically unblocked after a preconfigured time limit (default: 600 seconds)
• The script can run at a chosen frequency via the configuration file (default: 1 minute)
• You can receive email alerts when IP addresses are blocked.

∗ Installation
1
2
3
4
5
wget http://www.inetbase.com/scripts/ddos/install.sh

chmod 0700 install.sh

./install.sh

∗ Uninstallation
1
2
3
wget http://www.inetbase.com/scripts/ddos/uninstall.ddos
chmod 0700 uninstall.ddos
./uninstall.ddos

old Re: (D)DoS Deflate

oxytamine
User Off Offline

Quote
By the way, we used (D)DoS Deflate on Oxy2D, so it's okay. Though we just switched to iptables later.

old Re: (D)DoS Deflate

GeoB99
Moderator Off Offline

Quote
Hmm, maybe it will help us a bit protecting our servers against such attacks.
I've searched this DoS - Deflate about this and, heh, a bit complex what i saw in the link.

old Re: (D)DoS Deflate

Dark-Light
User Off Offline

Quote
The DoS Deflate work great. I attacked one of my server with 50 mbps (UDP) and it was still online.
edited 1×, last 28.02.17 11:50:34 am

old Re: (D)DoS Deflate

sheeL
User Off Offline

Quote
@user ohaz: Those scripts can't, but if you purchase a good DDoS protection, there's a good possibility
edited 3×, last 27.04.15 04:54:41 am

old Re: (D)DoS Deflate

ohaz
User Off Offline

Quote
@user sheeL: Yes, but that is because nothing can. Not this script, not any other script, or anything else at all. There is no effective way to stop a real DDoS attack.

old Re: (D)DoS Deflate

Dark-Light
User Off Offline

Quote
The Script can stop attacks which coming from a single attacker. I guess that's enough for a simple cs2d server. The most of the attacker use just simple dos scripts.
@user sheeL: You cannot stop a "Big" DDos attack.
edited 1×, last 28.02.17 11:55:45 am

old Re: (D)DoS Deflate

GeoB99
Moderator Off Offline

Quote
@user Dark-Light: They are often called DoS attacks instead of (D)DoS since those attacks are coming from a single attacker but still is effective against CS2D servers who aren't secured very well.
But yeah, nothing can really stop such (D)DoS attacks is like they are sending you nukes in your house.

old Re: (D)DoS Deflate

sheeL
User Off Offline

Quote
@user Dark-Light: Unfortunately free protections won't stop "big" DDoS attacks, although if you purchase a good DDoS prot. there's a higher chance that it will protect your server

old Re: (D)DoS Deflate

1uP
User Off Offline

Quote
Sadly this script can not stop a good DDoser who payed for his DDos program so...

old Re: (D)DoS Deflate

Evaldas
BANNED Off Offline

Quote
DoS Deflate protecting only from TCP and HTTP attacks.
I don't think that people will attack your server using HTTP Floods.
Maybe if you have website on same host.
To the start Previous 1 Next To the start
Log in to reply Servers overviewCS2D overviewForums overview