Hello,
I have a gigabit connections on my server, it’s a bi-core AMD (16 core), 32GB DDR3..
I already configured iptables and apache to prevent flood connections and apache don’t permit to open more than 25 connections for each ip. Also speed and concurrent connection are configured well.
My big problem is to stop synflood attack with SYN_SENT status. I block all ips incoming but the attack still flood my server!
Now the attack generate 400mbps with 223 ip and if i block it it’s all the same as before.. i think it’s spoofing ip.. yesturday server goes offline, 1gbps was full!
Well, i can’t buy load balancing, cdn, firewall and all others extra parts.
I just want to stop it inside the server.
Anyone can help me?
Thank you.
