Linux:DDoS Deflate 防御轻量级Ddos CC攻击

一、检查iptables是否在运行

service iptables status

二、安装DDoS Deflate

wget http://soft.kwx.gd/security/ddos-Deflat.sh

设置权限并运行脚本

chmod +x ddos-Deflat.sh
./ddos-Deflat.sh

三、设置DDoS Deflate 修改指定文件

vim /usr/local/ddos/ddos.conf

根据以下相关说明设置

##### Paths of the script and other files
PROGDIR="/usr/local/ddos"
PROG="/usr/local/ddos/ddos.sh"
IGNORE_IP_LIST="/usr/local/ddos/ignore.ip.list" //IP白名单文件
CRON="/etc/cron.d/ddos.cron" //定时执行
APF="/etc/apf/apf"
IPT="/sbin/iptables"
##### frequency in minutes for running the script
##### Caution: Every time this setting is changed, run the
script with --cron
##### option so that the new frequency takes effect
FREQ=1 //检查网络时间间隔,单位为分钟
##### How many connections define a bad IP? Indicate that below.
NO_OF_CONNECTIONS=150 //单个IP最大连接数,若超过则执行规则,默认即可
##### APF_BAN=1 (Make sure your APF version is atleast 0.96)
##### APF_BAN=0 (Uses iptables for banning ips instead of APF)
APF_BAN=10
//使用APF还是iptables。推荐使用iptables,将APF_BAN的值改为0即可。
##### KILL=0 (Bad IPs are'nt banned, good for interactive execution
of script)
##### KILL=1 (Recommended setting)
KILL=1 //是否屏蔽IP,默认即可
##### An email is sent to the following address when an IP is banned.
##### Blank would suppress sending of mails
EMAIL_TO="root" //当IP被屏蔽时给指定邮箱发送邮件,若不使用则在前面加“#”屏蔽
##### Number of seconds the banned ip should remain in blacklist.
BAN_PERIOD=600 //禁用IP时间,默认600秒

发表评论

Crypto logo

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Phasellus cursus rutrum est nec suscipit. Ut et ultrices nisi. Vivamus id nisl ligula. Nulla sed iaculis ipsum.

Contact

Company Name

Address