Stop flood - how ?
I want to know what are the ways to monitorize and control/stop flooding on my server, because I am heavily flooded. At this moment I am doing all this manually (when I see that my bandwidth is lowering or some applications are freezing), my main working tool being iptables.But I want something automated .
Another problem : if I am flooded with packets having real ip addresses , with a simple iptables command I cand resolve the problem easily. But, the problem is, in most of the cases, I am flooded with packets with spoofed ip adresses (e.g. 18.104.22.168 ), so the only thing I can do in this situation is to block all incoming packets (which ruins everything).Do you have a solution to this ?
The flood monitorizing (and controlling) tool may be with/without interface, only to be effective.