I need to do this:
(1) domain1.com limit to 10 connections per IP per 30 seconds but allow if accessing file beginning with x.php such as x.php?981 x.php?o19
(2) domain2.com limit to 10 connections per IP per 30 seconds only if accessing file beginning with x.php but allow if accessing file beginning with y.php y.php?981 y.php?o19 .....
how i can limit http and mysql connection limit on per domain basis.
View 2 Replies View RelatedHow can I Limit connections per IP in IIS6?
For example 10 connection per IP is allowed in a minute.
on setting up some sort of firewall who only allows 10 connections from the same ip to avoid spamming, abuse on the server.
How should i do this?
one of my friend say that if i install an apache module which one limit the users conection can help me to protect from ddos.
becaus one of my users domain is under ddos and i think that if i limit his conection, if sombody wants to do ddos and open conection foraxample up 30 he is attacker and ban.
is it right and how i can do it and limit a one user?
How is this done? from what I gether, there's nothing built into apache which can do this which I personally think is a bit silly as it seems like a common thing. Can anyone offer any help (for apache 2).
View 5 Replies View RelatedI have a powerful 8 core 8gb ram web server with scsi raid drives running RedHat EL 4. This server handles 2,000 - 3,000 HTTP requests per second via Litespeed httpd without strain (over 60%+ CPU idle time during peak load, under 1% IO wait). As the traffic volume continues to increase I've encountered a strange problem, the symptoms of which are as follows:
- About 1/4 or 1/3 of new connections are not answered by the server - they time out.
- All connections that are answered have exactly 3 seconds added to the time it takes to establish connection with the server (can be seen as "Connecting to ..." phase in FireFox). HTTP response times were tested by Pingdom from multiple locations all over the world.
- The problem is either "on" or "off", it is not gradual.
- Server ping is unaffected during the problem - no delay and no packet drops.
- The problem does not happen during off-peak hours of the day.
If litespeed httpd settings are tweaked to keep as many connections as possible in keepalive state for as long as possible, the problem is avoided, while tens of thousands of connections are kept in keepalive state.
Possible causes that were tested and eliminated: PHP/MySQL load (problem applies to static files exactly the same), CPU / IO / RAM, network uplink, hardware firewall, DNS.
This makes me think that there is some kind of bottleneck of how many NEW connections per second the server can accept. By maxing out keepalive quantity and duration I'm reducing the number of new connections per second. This is a temporary fix that will only work up to a certain point.
After investigation, litespeed staff verified that my litespeed configuration was correct and after some testing said that nothing in litespeed was responsible for this limiting factor. Litespeed process uses relatively little CPU and can definitely handle more volume.
Following sysctl.conf values were increased substantially to see if that will make a difference: tcp_max_syn_backlog, tcp_max_tw_buckets, tcp_max_orphans, netdev_max_backlog, somaxconn, file-max. This didn't produce any results. Disabling syncookies didn't help either. dmesg doesn't have any notices of limits being hit or throttles being applied.
Litespeed staff suggests that likely some limit in linux kernel is being reached. The strange 3 second delay does seem like an "intelligent" DDOS protection strategy of some sort. Perhaps this is some kind of kernel level DDOS protection?
Some limit connection mods can limit max connections per vhost, any mod can limit connections to apache server per IP?
View 3 Replies View Relatedwindows 2003
limit connections per ip to a port
im currently using routix netcom
it can limit the connections( NOT bandwidth) only but not per ip
another firewall which limit connections per ip
When I SSH'd into my box, I received this message:
example.pl is on this server. HTTPD connections have been limited to restrict this script from overloading server. All servers that have hosted this file need to have extremely limited http connections or have this file removed. It is poorly written and intense on CPU/memory.
How do I go and allow example.pl to be run on my server again? I use it solely for personal sites, so I wish to not have this file blocked and be allowed to run. I've searched for almost an hour now so I figured I would go ahead and post to see if any more experienced members could assist.
any good rule to limit Apache (port 80) connections from 1 IP to 15 with iptables/csf?
And total connections to the box to 100?
OS: Linux, on Apache 2.0
=======
Would you know and kindly tell me if there's a way to limit X number of connections per hosted site?
Because I don't want someone with high traffic forum unfairly stealing most connections for himself, which makes other sites suffer in performance.
I've been having trouble the past few days with someone who's been "attacking" my site so to speak by continuously downloading very large files with as many connections as (he) can open. I operate a large downloads site for computer games, this person has selected the largest files (like 400-500MB). Not sure of the real intent other than to clog up my bandwidth capacity. Also he appears to be using proxies since as soon as I ban one, another shows up seeminly from China.
Anyway, I have mod_bw and I've limited the number of connections in the downloads area to 2. While that works ok, his tool uses threads like a download manager would and he's using up 30-40 child threads for his 2 file downloads.
So 2 questions,
Is there anyway to not only limit file downloads to 2, but limit the number of connections per request? Many of my visitors do use download managers and I'd like for them to continue using them but use a reasonable number of threads like 6 or 8, but not 30.
Also, is there a way to restrict access to someone using a proxy?
I recently put up a website and after about a week, I suddenly can not access it. The site went down after the host had a problem with the http on the server and it never came back for me but it works for everyone else. It times out while trying to connect in both the web browser and FTP client. The problem appears to be related to my internet connection, because the site won't load on any computer that is using my internet. When I disconnect from my cable and use my cellphone as a modem, the site works fine. The site works for everyone else that has tried though.
Besides changing my IP address, how do I go about getting the site to work?
where to find a solution to this and despite searching I have not got anywhere.
I need to set up various selected addresses on one dedicated server to be forwarded to another server which does not have a domain name which fails.
This is how I have set it up :-
A dedicated server is hosting the "domain.com" and I am currently using virtusertable to forward email for "fred@domain.com" to, say "fred@aol.com" and john@domain.com" to somewhere else.
I now need to forward Fred's email to a server which does not have a domain name, only an IP number. If I change Fred's forwarding to "fred@xxx.xxx.xxx.xxx" the mail fails with the following error :
Code:
----- The following addresses had permanent fatal errors -----
mailtester@84.244.19.133
(reason: 550 Host unknown)
(expanded from: <fred@domain.com>)
----- Transcript of session follows -----
550 5.1.2 fred@xxx.xxx.xxx.xxx... Host unknown (Name server: xxx.xxx.xxx.xxx: host not found)
Reporting-MTA: dns; ns3.server-hosting-the-domain.co.uk
Received-From-MTA: DNS; some-com.com
Arrival-Date: Tue, 18 Dec 2007 12:39:32 GMT
Final-Recipient: RFC822; fred@domain.com
X-Actual-Recipient: RFC822; fred@xx.xxx.xxx.xxx
Action: failed
Status: 5.1.2
Remote-MTA: DNS; xxx.xxx.xxx.xxx
Is it possible to limit ftp access to a server to only one ip address?
View 5 Replies View RelatedHow can I limit the bandwidth for a specified IP? No matter if incoming or outgoing connection
I've already tried mastershaper but it didn't work for me
It would be nice if there would be something easily with iptables
I've seen sites that use only 1 domain name, and when I ping it from one country the IP is different from when I ping it from another country.
View 4 Replies View Relatedi am looking for dns hosting with redirect to a server in Europe or usa based on location.
View 2 Replies View RelatedHow can I allow only one ip or a list of ip addresses to access port 8443.I need to limit access this port to few ip addresses and not everyone
View 6 Replies View RelatedURL....We are running Plesk 12 on a Linux VPS where we have multiple domains running.Multiple of these domains should redirect from www. domain name. ext to https://ext.domainname.com.This is configured with the Domain forwarding in Plesk, with hosting type Forwarding.But as described in the 2 links provided above, whenever you go to https://www.domain.ext, it does not redirect, and actually shows a Security error, since the domain doesn't have the SSL-certificate installed (because it should redirect to the https://ext.domainname.com).
Clearly we don't want visitors on the website to receive the (incorrect) Security error, and we want all traffic to http(s)://www.domain.ext to be redirected to the appropriate subdomains. allows us to redirect both the https/http connections to the domains, without forcing us to have the domains have a Website hosting add redirect them manually with (for example) .htaccess.
My server currently has 500 set for this parameter. However, I have some scripts that send out reminders and the number of emails will certainly exceed this limit. So this leads to some questions...
What will happen if my scripts try to send out more than the limit?
What happens when the limit is exceeded? Do the scripts "crash", or do they just keep running? Do the "over quota" emails just get discarded or do they get queued?
How does this affect performance? Or maybe it doesn't?
Does the email queue get clogged up if it has too many emails?
What could be bad about increasing the limit - say to 2000? Would this create performance problems for my server?
I have a couple sites that I'm hosting and I would prefer to keep the limit of 500.
However, how can I increase the limit for my own scripts (domains)?
Or, perhaps this option has nothing to do with performance and it's strictly in place as a security measure to prevent hosted accounts from spamming.
I searched for information concerning this issue and couldn't find anything. The cPanel/WHM forum doesn't say what the parameter is for, just how to set it.
I have a task of converting a current Win Server based apache server from multiple IP based virtual hosts to a full name based virtual hosting.I'm famiilar with the steps but I was wondering if there are any gotchas in Windows that I should be aware of. It seems that now matter what I change in the new config it doesn't work or work as expected.
View 1 Replies View Relatedthinking about adding web hosting to my reseller account. Can anyone tell me the difference between an IP address and a domain. If they are different who actually owns the domain and who owns the IP address?
View 9 Replies View Relatedhow can i find a web host (name) address with the help of domain name?
View 4 Replies View RelatedI'm moving from shared to dedicated hosting. I've added an account and used ftp and phpmyadmin to copy over a WordPress installation. I would like to test this installation before re-directing the name servers, but I'm having no luck.
If I browse to 12.34.567.890/whm, I get the Web Host Manager. If I browse to 12.34.567.890, I get the "Great Success! Apache is working on your cPanel and WHM server" page. If I browse to /anything_else, (e.g., /wp-admin, /index.php, etc.) I get a 404 message.
Is there any way I can test this application (and others) using the IP address, or am I going to have to change the DNS and navigate to mydomain.com?