I had DDoS attacks on my site and the admin at my hosting company applied mod_evasive to my server. My traffic has gone from 10K+ visits a day to between 1K-2K a day. Can mod_evasive be too aggressive and kill off good traffic?
Can mod_evasive be too aggressive and kill off good traffic?
783 Views Asked by MrVK At
1
There are 1 best solutions below
Related Questions in APACHE
- Special access rule in an .htaccess file for IP addresses, authorized only for one directory structure
- How to isolate PHP apps from each other on a local machine(Windows or Linux)?
- Cannot load modules/mod_dav_svn.so into server
- How to ignore case in regexp mapping in a .htaccess rewrite rule?
- Oracle Http server ISNT-07551
- I cant access file directory with PHP local host on XAMPP. it just shows one of the files I have in my visual studio code
- Apache Reverse Proxy: only one proxy directive is working. Second one is ignored
- Issue with Django --> Apache WSGI deployment
- changing the node version used by apache web server
- Apache: How can I redirect to a subfolder with a URL param but serve required content via the main URL?
- Why/How does Apache auto-include "DHE" TLS1.2 ciphers while nginx needs "dhparams" file?
- Set up MX records in apache/Ubuntu to point to external mail server
- How to proxy to another port?
- Php can not upload file out of /var/www/html even after disabling Selinux
- Serve static site on S3 + CloudFlare with Apache retaining the source URL
Related Questions in SERVER
- Sending data from C++ server to React.js client
- Deploy Flutter and Laravel php mobile app on the host server
- Protect Server Actions with Next Auth in Next JS 14
- Cannot interact with netcat server over distance
- Facing fatal errors while running "yum update" command on CentOS 7/Cloudlinux 7
- Is there any way to set a printer as default according with Active Directory Policy Security Group and PC hostname?
- How to run GRPC and REST server on same port in Go?
- Share files from the server without data or internet usage
- Django Not Sending Tasks to Celery in Production
- Install Postfix Mail Server
- Is it viable proxying all my mobile apps requests, to some kind knowing that a request is coming from a secure source
- How does a server handle multiple requests, and how does is know where to send which response?
- Trying to launch batch file from powershell, and immediately closes
- Apache: How can I redirect to a subfolder with a URL param but serve required content via the main URL?
- Developing on a remote server an app symfony
Related Questions in MOD-EVASIVE
- Apache mod_evasive not respecting configurations in Virtual host for specific pages in Drupal
- How to forward request with real IP through Application Load Balancer?
- DDoS protection with Cloudflare proxy + multiple domains
- ModEvasive / mod_evasive Not Saving Logs
- Apache: mod_evasive triggering due to own page design
- mod_evasive not working in Apache 2.4.48 on Ubuntu 18.04
- Apache2 mod_evasive DOSSystemCommand not executing the command
- SeLinux blocking mod-evasive (Apache) from running a command as sudo
- PHP Apache module mod_evasive not blocking by IP only
- Can mod_evasive be too aggressive and kill off good traffic?
- Facebook Scraper: COULDNT_CONNECT to fwdproxy port 8082
- mod_evasive not working on Apache 2.4.6
- Apache2 + Mod_Evasive, only for one virtual host?
- How to install mod_evasive in Amazon Linux ami
- DOS-protection in Apache
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Yes it can be but depends on the configuration. You have to make sure it's properly configured. There are four primary settings:
While using it on our server initially we faced the same issue as you, then we checked logs and visitor activity and setup this, now we can say it's working well.
To prevent DDOS you can use cloudflare, ns1 or capsula service which works. Fail2Ban along with CSF and mod security will add more protection.
But whatever you setup you have to analyze your visitors activity otherwise you will end up by blocking real visitors.