firewall to stop ddos or paid to someone to setup firwall
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
firewall to stop ddos or paid to someone to setup firwall
Hello,
Is there firewall or firewall device from amazon or ebay that can stop ddos attack or paid to someone to setup firewall , is there way to stop ddos attackinh?
Note : ports are udp (home connection)
Thanks
It is possible to get a firewall/security virtual machine appliance and run it possibly for no cost.
You should be able to have some control over your access to the web. I'd look to the router/modem and close all ports except ones that you must have open. And that is only a few for most people.
If someone knows your ip address it may be that no amount of your work can stop a ddos attack. You may have to have your isp block the attack.
The point of a DDoS attack is to overwhelm a server/site with repeated calls, not to gain access to it. The persons who start a DDoS attack don't care whether they ever get past the firewall; their goal is to deny others access to the site.
The only way to stop a DDoS attack is to alter the target's ip address and, once the new ip address propagates across DNS servers, the attack can be resumed if the perpetrators wish.
It is possible to get a firewall/security virtual machine appliance and run it possibly for no cost.
You should be able to have some control over your access to the web. I'd look to the router/modem and close all ports except ones that you must have open. And that is only a few for most people.
If someone knows your ip address it may be that no amount of your work can stop a ddos attack. You may have to have your isp block the attack.
The point of a DDoS attack is to overwhelm a server/site with repeated calls, not to gain access to it. The persons who start a DDoS attack don't care whether they ever get past the firewall; their goal is to deny others access to the site.
The only way to stop a DDoS attack is to alter the target's ip address and, once the new ip address propagates across DNS servers, the attack can be resumed if the perpetrators wish.
Intrusion is a whole nother story. Everyone, whether home network or a huge ISP, should make intrusion as difficult as possible.
"The only way to stop a DDoS attack is to alter the target's ip address and, once the new ip address propagates across DNS servers, the attack can be resumed if the perpetrators wish"
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
You cannot stop a DDoS attack. To make it more simple you are asking "how can I confirm that every person visiting my shop wants to buy something". It's a bad analogy but roughly how things stand
You cannot stop a DDoS attack. To make it more simple you are asking "how can I confirm that every person visiting my shop wants to buy something". It's a bad analogy but roughly how things stand
I don't want to stop ddos attack all i want that every person protected to disconnect from the server
when i have ddos attack my network disconnect i had to restart it
Is there firewall or firewall device from amazon or ebay that can stop ddos attack or paid to someone to setup firewall , is there way to stop ddos attackinh?
You are asking about stopping DDoS attacks? If they are true DDoS attacks (and you should keep in mind that most of the questions on here about DDoS attacks turn out to be about something else, such as plain DoS attacks, and the answers for other attacks can be very different), it is difficult to stop them, although there may be palliative measures (which you aren't asking about).
In any case, as DDoS attacks cost money to mount, what has made it worthwhile for someone to do this?
@273
Quote:
You cannot stop a DDoS attack. To make it more simple you are asking "how can I confirm that every person visiting my shop wants to buy something". It's a bad analogy but roughly how things stand
I think a slightly better analogy (and it is only an analogy - you can get into trouble by pushing analogies too far) would be to ask "How do I stop people knocking on my front door; I can't tell when a serious caller is knocking because of all of these nonsense people knocking on the door?"
Well, if the 'bad' requests are doing something different from the 'good' requests, then you could, potentially, do something based on that difference. If you have a fairly limited list of 'good' users, perhaps you could whitelist based on that (but the 'bad' requests are still made, you just drop them fairly efficiently). If there is only a fairly limited list of 'bad' accessors (in which case, it isn't much of a DDoS) then you might get somewhere with something like fail2ban, or manually blacklisting the worst offenders. But, ultimately, if it really is a full blown DDoS, you'll have to get co-operation from upstream.
Quote:
I don't want to stop ddos attack all i want that every person protected to disconnect from the server
That sounds rather different from the earlier statements; it sounds now as if you have people who are authorised to the server (is that correct??? maybe that's not what you mean by some people being 'protected') and you want the others to disconnect. If that is true, then it might be more possible; can you clarify, please?
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
Quote:
Originally Posted by salasi
@273
I think a slightly better analogy (and it is only an analogy - you can get into trouble by pushing analogies too far) would be to ask "How do I stop people knocking on my front door; I can't tell when a serious caller is knocking because of all of these nonsense people knocking on the door?"
I defer to your better analogy -- I seem to be out of good analogies.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.