[HowTo] Basic DOS protection in FreeBSD

[pezcabrutal]

Quote:

Originally Posted by Uncorrupted

There were some "bugs" in the pf.conf file and I didn't have time these days for epvp.

I will edit the first post in a few minutes and add our sysctl.conf file as well which helps against some attacks.

And if some wannabe hacker is worried his booter won't work if people start taking this kind of measures, you know the way out...

hello there is a small problem:

1°

web_ports="{ 3306 }"

2°
table <trusted_hosts> const { 91.***.***.*** , 127.0.0.1 }
table <abusive_hosts> persist

3°
pass in on $ext_if proto tcp to any port $web_ports flags S/SA keep state \
(max-src-conn 50, max-src-conn-rate 15/5, overload <abusive_hosts> flush)


settings is well

IP blocks :SSSSSSSS