Intrebare

Adrian Adrian · 17 Ian 2023

Buna seara! Intampin o problema cu serverul meu! Desi am cache pe toate partile, acelasi trafic, am overload pe server. In poza atasata am niste printr-uri din Cpanel si din WHM. Serverul are suficienti RAM si procesor puternic si totusi acest overload masiv. Am resetat serverul si degeaba. Am facut update la template acum cateva zile, si mici modificari care n-ar fi trebuit sa imi faca problemele astea. Multam!

AlexH · 17 Ian 2023

Cred ca este un atac pe baza de search care rupe db.

Cum poti reduce numarul de request la accesare si reduce consumul de resurse.

Acesta este continuarea la acest topic Blocare auto redirect la codurile de popup ads si restul. Pentru a incerca sa reducem cererile la o accesare si face pagina mai rapida si sa consume cat mai putine resurse. Orice sugestie care o postez e bine sa o testati si e posibil sa nu functioneze...

www.roforum.net

In acest topic am pus elemente de protecție cat si pentru blocare atac prin metoda Search.

Poți vedea calea exacta și in cloudflare.
Activezi la firewall amenintare, apoi pui l valoare mai mica sau egala cu 3.

Stergi cache si apoi aștepți cateva minute, verifici log-ul in cloudflare si vezi cale exactă prin care esti atacat.
Prin aceasta poți reduce load la minim.

Adrian Adrian · 17 Ian 2023

AlexH a spus:
Cred ca este un atac pe baza de search care rupe db.

Cum poti reduce numarul de request la accesare si reduce consumul de resurse.

Acesta este continuarea la acest topic Blocare auto redirect la codurile de popup ads si restul. Pentru a incerca sa reducem cererile la o accesare si face pagina mai rapida si sa consume cat mai putine resurse. Orice sugestie care o postez e bine sa o testati si e posibil sa nu functioneze...

www.roforum.net

In acest topic am pus elemente de protecție cat si pentru blocare atac prin metoda Search.

Poți vedea calea exacta și in cloudflare.
Activezi la firewall amenintare, apoi pui l valoare mai mica sau egala cu 3.

Stergi cache si apoi aștepți cateva minute, verifici log-ul in cloudflare si vezi cale exactă prin care esti atacat.
Prin aceasta poți reduce load la minim.

Multumesc pentru raspuns, Alex! Azi noapte mi-am dat seama ca este un atac.

Bullten · 18 Ian 2023

Incase you need help Let me know

Adrian Adrian · 19 Mar 2023

Revin din nou cu o chestie ciudata. Am foarte multe requesturi din US, efectiv daca nu pun Challenge pe toata tara, tot felul de boti imi acceseaza site-ul si fac un overload masiv, abia mai incarca. S-a mai confruntat cineva cu asa ceva in perioada asta? Multumesc!

Bullten · 20 Mar 2023

looks ddos.

Adrian Adrian · 20 Mar 2023

Bullten a spus:
looks ddos.

Is still on...

Bullten · 20 Mar 2023

doesnt looks like traffic is down from that region.

Adrian Adrian · 20 Mar 2023

Bullten a spus:
doesnt looks like traffic is down from that region.

WAF - Javascript rule from Cloudflare worked, the attack is still on

Bullten a spus:
doesnt looks like traffic is down from that region.

Bullten · 20 Mar 2023

is server load still high?

Adrian Adrian · 20 Mar 2023

the server log is full of these:

Bullten · 20 Mar 2023

if server load is still high please install nginx on server and rate limit connections.

Vasile+ · 20 Mar 2023

the interactive challenge is shit. i'm pretty sure you don't have organic traffic from the US. just block the entire country for now. don't forget to exclude known bots from that rule.

Adrian Adrian · 20 Mar 2023

Adrian Adrian a spus:
the server log is full of these: Vezi atașament 23627

I don't understand why these domains are appearing into the ssl log from the server

Vasile+ · 20 Mar 2023

Adrian Adrian a spus:
I don't understand why these domains are appearing into the ssl log from the server

idk why is stored there, i think your panel just sucks. but that's just the referrer from all those requests.
but if you don't wanna block the entire country, here's a boring and definitely not-so-useful option, you can go by blocking the referrers on cloudflare's side. like:

Cod:

(http.referer contains "watchseries1.org") or (http.referer contains "projectfreetv.fun")

Adrian Adrian · 20 Mar 2023

Vasile+ a spus:
idk why is stored there, i think your panel just sucks. but that's just the referrer from all those requests.
but if you don't wanna block the entire country, here's a boring and definitely not-so-useful option, you can go by blocking the referrers on cloudflare's side. like:

Cod:

(http.referer contains "watchseries1.org") or (http.referer contains "projectfreetv.fun")

Thanks, Vasile. I added this rule also. Now I am trying to rate limiting with "Modsecurity" from WHM

Vasile+ · 20 Mar 2023

Adrian Adrian a spus:
Now I am trying to rate limiting with "Modsecurity" from WHM

be careful with this option, you may end rate limiting good bots like google, yandex and so on...

Adrian Adrian · 20 Mar 2023

Vasile+ a spus:
be careful with this option, you may end rate limiting good bots like google, yandex and so on...

thanks for advice!

Intrebare

Active Member

Merg pe strada catre Mine...

Active Member

Support Official

Active Member

Atașamente

Support Official

Active Member

Support Official

Active Member

Support Official

Active Member

Support Official

Active Member

Active Member

Active Member

Active Member

Active Member

Active Member

Reclama

Reclama

Stiri Monezi Virtuale

Reducere pentru Vacanta