Date: Tue, 24 May 2011 16:53:31 -0400 From: Alejandro Imass <ait@p2ee.org> To: Andy Wodfer <wodfer@gmail.com> Cc: freebsd-questions <freebsd-questions@freebsd.org> Subject: Re: Urgent: Under attack - need tcpdrop help Message-ID: <BANLkTikz-MgrygUh1d6czE85ufQDxC%2B6jw@mail.gmail.com> In-Reply-To: <BANLkTikGjnh-cfO_dtk=jf6ZVNiY=x8nqw@mail.gmail.com> References: <BANLkTikGjnh-cfO_dtk=jf6ZVNiY=x8nqw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, May 24, 2011 at 4:29 PM, Andy Wodfer <wodfer@gmail.com> wrote: > Hi, > One of my FreeBSD servers is currently being attacked (DDOS) and I'm > blocking IP addresses in my firewall. However, there are a large number of > hung tcp connections and I want them gone. > I know it's not what you're asking but for the future try fail2ban. I can gladly post a simple how to here for FreeBSD. It's a very simple solution but I have been keeping off pests quite well with fail2ban. I think it's an awesome and simple framework to automatically ban IPs and they just move on to the th next server. In fact you can see the bannings diminish in time as they are the one that get tired ;-) Good luck, -- Alejandro Imass
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BANLkTikz-MgrygUh1d6czE85ufQDxC%2B6jw>