Configuration and use of the Apache anti-DDOS module mod_dosevasive

Apache anti-ddos DoS is short for Denial of Service (DoS). DoS attacks are called DoS attacks. It aims to make the computer or network unable to provide normal services, it is a type of malicious attack that has great harm to the network. The full name of DDOS is Distributed Denial of service (Distributed Denial of service). a dos attack source attacks a server together to form a DDOS attack. Compile the mod_dosevasive20.so module for the apache service to prevent Ddos attacks. Download the required installation plug-in: mod_dosevasive.1.8.tar.gz use apache's apxs tool to compile: $ APACHE_ROOT/bin/apxs-I-a-c mod_dosevasive20.c ($ APACHE_ROOT in the command is the apache installation, such as/usr/local/apache2) function module>/usr/local/apache2/modules/mod_dosevasive+so main Configuration File Usage module: vim httpd. confLoadModule dosevasive20_module modules/mod_dosevasive20.so // load the compiled module Include conf/extra/httpd-dos.conf // load the new configuration defined for the module: /usr/local/apache2/conf/extra/httpd-dos.conf <IfModule mod_dosevasivestmc> DOSHashTableSize 3097 record and store the blacklist of hash table size, if the server access volume is large, you can increase the value of DOSPageCount 2. The number of times that the same page can be accessed by the same user within the "unit time, if this number is exceeded, it is listed as attack DOSSiteCount 50. The same user can access the same website within the "unit time, if this value is exceeded, it is listed as attack DOSPageInterval 1. Set the "unit time" Length Standard in DOSPageCount. The default value is 1. DOSSiteInterval 1. Set the "unit time" Length Standard in DOSSiteCount, the default value is 1 DOSBlockingPeriod. 10 messages are blocked at intervals of seconds. Therefore, 403 (Forbidden) messages are returned. </IfModule>