ddos

morion77 · 01/01/2015, 14:45

Hi I'm using this script to block ddos, the system has mistakenly locked the address of my web server, I am trying to remove the block but I can not. Do you have any idea how to do?
Thank You

Code:

#!/bin/sh
FR_MIN_CONN=400
TMP_PREFIX='/tmp/frrr/'
TMP_FILE=`mktemp $TMP_PREFIX.XXXXXXXX` 
/usr/bin/netstat -unp tcp -f inet| awk '{if(NR>2 && NF=6) print $5}' | cut -d. -f1-4 | grep '^[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}$' | sort | uniq -c | sort -nr > $TMP_FILE
while read line; do
 CURR_LINE_CONN=$(echo $line | cut -d" " -f1)
 CURR_LINE_IP=$(echo $line | cut -d" " -f2)
 if [ $CURR_LINE_CONN -lt $FR_MIN_CONN ]; then
 break
 fi
/sbin/route -q add $CURR_LINE_IP 127.0.0.1
/bin/echo $CURR_LINE_IP >> /root/banlist.txt
/bin/echo "Subject: $CURR_LINE_IP ipden $CURR_LINE_CONN Connect Refused."
done < $TMP_FILE
/bin/rm -f $TMP_PREFIX.*

.Shōgun · 01/01/2015, 15:00

rm /root/banlist.txt

morion77 · 01/01/2015, 15:04

Quote:

Originally Posted by .Shōgun

rm /root/banlist.txt

Don't Work

.Ryuzaki™ · 01/01/2015, 15:48

cd /root && rm -R banlist.txt ?

~~Gillette Kaito~~ · 01/01/2015, 16:07

Quote:

Originally Posted by .Shōgun

rm /root/banlist.txt

Quote:

Originally Posted by .Xynex™

cd /root && rm -R banlist.txt ?

bitte les dir erstmal den thread durch.

morion77 · 01/01/2015, 16:18

Solved rebooting machine and clean banlist.txt

.Ryuzaki™ · 01/01/2015, 16:47

Quote:

Originally Posted by RealKagami

bitte les dir erstmal den thread durch.

Wenn er die entfernt, dann funkt. es auch nicht mehr. Also bitte
ließ es dir selber erstmal durch