for the pools under ddos, i share with you some tricks
Use cloudflare's "I'm under attack mode"
This does'not help over 30k botnets then you full cache the attackers url. (use cloudflare full cache)
When cloudflare cache it's zero effect on your servers.
You can dedect attacked urls in google analytics, live stats :-)
I had to deal in the past so many ddoser... Port 80 attackers is a piece of cake.
Longest attacks last 4.5 days in records in very rare situations. So no worry much.
hi. thanks for the feedback.
does the cloudflare free plan is enough?
because the free plan doesn't seem to support mitigation attacks protection; this is what we would need
Free plan has "i am under attack mode". All you need to open it. Also you have 3 page rules limit to put so you can full cache attacked urls. if attacker attacks more than 3 urls at port:80 and at the same time then you will need 20 dollars plan which goes up to 20 page rules. In most case free plan will be more than enough. :-)
To make attack influence even less, just learn first the attacked url(s) from google analytics, then put simple html file there and let cloudflare cache it.
Also nginx is much resistance to attacks then apache. you can block with nginx attackers traffics (those mainly has no user agent) so you put rule in nginx to deny bad visits without correct user agent.
wow you are a life saver!!
i never configured the "page rules" settings in cloudflare and thought the free plan was a crap.
i just added a page rule according to the requests made by the attackers and cloudflare seems to do his work well from now on.
-> our frontend is now accessible again
->
http://ecc.coins4everyone.comif only we had this solution at the beginning of the attack and better when we've been DDOS a few days after launch, for sure we'll have been one of the biggest EC pool.
thank you anyway!!!
