APF And AntiDOS

I have installed APF. I also activated AntiDos that is part of APF.

I have changed the following in the config file:

Quote:

# Try to detect syn-flood attacks [0=off,1=on]
DET_SF="1"

The rest of settings are default. I have Intel Xeon-Woodcrest 5148-DualCore-LV [2.33GHz] server with 4 gigs of RAM. My web server is extremely slow.
I run commands, such as:

Quote:

netstat -pan | sort +4 |awk '{print$5}'| sed -e s/':.*'/''/g | sort | uniq -c | sort -k1 -nr | head -n 20
netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n
netstat -plan|grep :80|awk {'print $5'}|cut -d: -f 1|sort|uniq -c|sort -nk 1
netstat -plan|grep :25|awk {'print $5'}|cut -d: -f 1|sort|uniq -c|sort -nk 1
netstat -nap | grep SYN | awk '{print $5}' | awk -F ":" '{print $1}' | sort | uniq -c | sort -n
netstat -n | grep SYN

Sometimes I see entries that indicate possible attack, such as:
Quote:

63 80.191.210.252

, but most of times, there are many IPs, example:

Quote:

24 85.133.177.70
20 89.178.184.215
18 83.11.216.179
15 84.234.0.183
7 87.228.120.88
7 172.188.3.203
6 202.84.43.178
5 89.178.45.124
4 85.117.72.151
2 202.40.181.72
2 217.172.29.7

Here are my questions: what is going on? I understand that apache is getting flooded, but any way to adjust APF's antidos to block those attacks?

ANy better solution? Does AntiDos feature of APF really work?

I've read about mod_evasive addon. Shall I install it, too?

Will there be a conflict between APF's AntiDos and mod_evasive running together?

My users are tired of waiting for forum to load.