DOSBlockingPeriod
DOSBlockingPeriod – This is the number of seconds that an IP address is blacklisted for after a violation, in this case 30 seconds. Some server administrators set this pretty high, like 5 minutes (300 seconds), while others set it as low as 10 seconds. However, if additional requests are made during the blacklisting period then the blacklisting period is extended, so long blacklisting periods don’t seem necessary to me. I use 30 seconds, but use your own judgment.To apply mod_enable, use webmin. Click the Servers icon at the top, then click on the Apache Webserver icon at the top. Click the “Apply Changes” tab near the top.
There is a utility that can test mod_evasive included in the install package. You can run it by opening PuTTY and connecting to your server as root. Enter these commands.
# cd /tmp/mod_evasive
# perl test.pl
That will hammer your server for a few seconds. You should see some error 403 message returned. If not, lower your DOSPageCount parameter a little and try again.
No comments:
Post a Comment