How To Detect And Prevent DDoS Attacks? 10

DDoS attacks can usually be prevented and predicted. To Do this and you will be able to stop attackers accessing your website using the methods described here. And increase your site’s security more than before so that you can provide services related to your website to your users more efficiently and faster than before.

What Is DDoS Attack?

DDoS attack stands for Distributed Denial Of Service In simple words, it means that too many requests are flowing to the server, which in turn overuses resources like CPU usage, database usage, bandwidth, memory etc.). Through This is when service becomes unaccessible or disrupted frequently.

Due Because of the overload of server operations or high volumes of processing, an attacker can attack you with multiple computers.


DDoS Attacks Are Divided Into Different Categories

  1. ICMP flooding
  2. Denial-of-Service Level
  3. Unintentional Denial of Service
  4. SYN
  5. Teardrop attacks
  6. Reflected / Spoofed attack
  7. Low-rate Denial-of-Service attacks
  8. Distributed attack
  9. PeerPeer-to-peer attacks
  10. R-U-Dead-Yet?
  11. Asymmetry Resource utilization during starvation attacks
  12. Nuke
  13. Permanent denial-of-service attacks
  14. ApplicationFloods below the flood stage


Note: Most All of these attacks end automatically Cloudflare or other CDN’s help, but some of these attacks are more serious, which we will explain.


ICMP Flood

This Method sends ping requests to the individual in question and disrupts the server. Sending Large volumes of ICMP queries to a network won’t be accessible to all hosts.

Assume that any host who responds to this request redirects a large amount of response to the network’s access point and causes the switch to fail. As As a consequence, eventually the site will be unaccessible.

It To disable network hosts and stop suspicious packets from being transmitted, it is best that you respond to the “ping” command. It It is possible through the firewall CSF.


R-U-Dead-Yet? Attacks

This An attack can be carried out with sessions, which are still waiting for web application requests to be made. To These attacks can be prevented by first using up-to date operating systems. The tool for web-based DOS needs an element that allows you to input information, such as username fields. If The first page without an input form will not be attacked.


SYN Flood Attacks

In This attacks eliminates the three-step process to establish a TCP link by the part time attacker. When If there is a high volume of requests, the server won’t be able to communicate with any new offers. The server then becomes unreachable.

What Is The Difference Between DOS And DDoS?

In In both instances, the victim server continues to be attacked. The difference lies in the attack type. In A DOS attack is when an attacker executes the program on one machine. In An attacker can use multiple virtualization or systems in order to attack the target in DDoS attacks.


DOS Attacks With Variety Of Methods


DOS Attacks At The Network Equipment Level

In Software vulnerabilities within hardware operating systems can be used to attack or disrupt hardware. For One example is that in an old router series one company suffered from a buffer overfollow error.

In If you click on this phrase and type a long password in the field, your router and operating system would not work.


Attacks At The Webiliciousting System Level

In Operating system attacks and operational system protocols can be used to disable the service. An example of a DoS attack for this type of attack is a death ping attack that uses the operating system’s ICMP protocol. Greater Most often, victims are subject to unreasonable demands. These types of attacks usually damage the victim’s system.


Attacks In Applications

In In this case, the attacker creates endless software programs that run on the victim system. This Constant routine makes it impossible to access all system resources and causes the victim system’s accessibility to suffer. So Make sure that the software you download or run does not contain viruses and malware


How Can You Prevent DDoS Attacks On Linux?

DDoS attacks Linux Disrupt the web server and because a website server like Apache DDoS attacks are weak, It Content and files can take a long time to load.

In In these instances, the IPs that are connected to the server can be viewed along with the total number of connections. Linux Servers using the following command

awkSort | awk ‘{print $ 5}’ | cut -d: -f1 | sed -e ‘/ ^ $ / d’ | sort | Uniq -c| sort –n

Log In to your CSF confiding, and exact PORT 80 from TCP_IN_OUT.

Note: By By doing so, port 80 is blocked on your server. Then you are able to safely proceed with the next step. You If you don’t want websites that are difficult to reach, this is possible.

After Close PORT 80 first. Firewall Config System Make these changes.

Set These are the CSF.conf settings:

Flood protection with DOS/SYN


  • CT_LIMIT = “80”
  • CT_INTERVAL = “50”
  • CT_PERMANENT = “1”
  • CT_BLOCK_TIME = “1800”
  • CT_INTERVAL = “60”
  • SYNFLOOD = “1.”

Now Protect your server from DOS/SYN attacks. When an IP block occurs, you’ll be notified via email.

  • connlimit = “22;5,80;20”

The Number of simultaneous connections permitted for port 22: Five, and port 80: 20

  • PORTFLOOD = “80;TCP;20;300”

This Setting means all port 80 TCP type requests of 20 request per second are sent to this address. Limit It can take up to 300 seconds for the connection to be released.

You can set LFD to detect suspicious directories:

When Enter the following command to display the IP addresses connected to your server and the number of connections.

  • awk| awk ‘{print $5}’ | cut -d: -f1 | sed -e ‘/^$/d’ |sort | Uniq -c| sort -n

Enter the indicated IP addresses in the website below to locate the IPs.

And After you have displayed the details in Country Code You will see in the section which country is under attack.

You You can also check the link below to find the ISP address of the attacker.

Note: Get All IPs shown first, enter Config Server Firewall Like the tutorial above, you can place them into the CC_DENY List, restart your CSF or LFD services, then reboot your server. And Now, you can open port 80 to your server.

Note: This Tutorial is about attacks at level 7 (software-level) of the network that has attacked web servers. In Cyberattacks, for example, on the Internet You can’t stop attacks from any software other than a hardware firewall.

What is a ddos attack


Easiest Ways To Prevent DDoS Attacks In Windows 10


After You Purchase Windows VPS RDP may result in an attack on your server. You can prevent this by using the Windows Firewall has some tools.

Windows Firewall Allows the user to set rules and manage incoming and exiting traffic. To Find out how to create rules for the Windows For increased security against DDOS attacks in your server, you should pay particular attention to the following:

  1. Click Server Manager In the Task Bar.
  2. Go The Tools Click on the menu Group Policy Management.
  3. On The Advanced Security Click tab Windows Firewall.
  4. On The next page will show you the Inbound Rules option.
  5. Click On the “Action” Create new rules
  6. You will see a new window that offers options like Program, Port, PredefinedAnd Custom.
  7. You You can design the rules according to what you desire.

Note: If You have an internet connection from far away Windows Use the link below to connect with RDP server.

Protect RDP Against Brute-Force Attacks




If you’re pretty sure you are under DDoS or DOS attack, it’s best to contact a professional in the field.

1- If you can’t access your files or other websites from your computer, contact your network administrator.

2- If If you find such conditions in your computer at home, please contact your ISP.

3- You You can also block the IP if it is found. You It may be necessary to end an IP range. (Server These settings are available to administrators.

Let Let us know if the article was enjoyed. That’s the only way we can improve

6 Reasons Why The RDP Server Is Not Connecting

Previous article

What Is A CDN And How Does It Help To A Website?

Next article

You may also like


Leave a Reply

More in Linux