What are the Security Methods We can Follow to avoid DOS attacks..!!

anishkumarv · 07-30-2011, 12:55 AM

Hi,

Thanks in Advance!! :-)

What are the Security Methods We can follow to avoid DOS attacks,

1. Using Iptables to block the ICMP protocol means ??

Is this a right way to avoid this attack?? Guide me to solve this thread

John VV · 07-30-2011, 01:42 AM

none,if you get hit by 100,000 different ip addresses .
install "fail2ban" if only from 6 or so ip addresses .

anishkumarv · 07-30-2011, 02:16 AM

Quote:

Originally Posted by John VV

none,if you get hit by 100,000 different ip addresses .

Thanks John there is no possibility ?? to avoid 100,000 different IP addresses.

What about Anti-dos feature in Advanced Policy Firewall, Is this Secure, just now only i find this in google,

win32sux · 07-30-2011, 10:02 AM

There's different kinds of DoS attacks you can use your firewall and/or TCP/IP stack features to defend against (you'll need to be specific as to which attack you're referring to if you want help with countermeasures), but if you're actually talking about a DDoS (distributed denial of service) then there really isn't anything you can do in most cases. An exception would be a non-bandwidth-starving DDoS in which interaction between your servers and the attack hosts is required, as you may be able to develop a fingerprint/signature to isolate hostile traffic. Still, if the DDoS is saturating your link and doesn't require interaction (or is sneaky enough that you can't filter attack traffic without massive collateral damage), you're pretty much dead in the water without the help of your ISP.

This has been discussed on numerous occasions here on LQSEC (a simple search should get you some relevant threads).