• Announcements

    • MannDude

      Current state of vpsBoard   02/04/2017

      Dear vpsBoard members and guests:

      Over the last year or two vpsBoard activity and traffic has dwindled. I have had a change of career and interests, and as such am no longer an active member of the web hosting industry.

      Due to time constraints and new interests I no longer wish to continue to maintain vpsBoard. The web site will remain only as an archive to preserve and showcase some of the great material, guides, and industry news that has been generated by members, some of which I remain in contact to this very day and now regard as personal friends.

      I want to thank all of our members who helped make vpsBoard the fastest growing industry forum. In it's prime it was an active and ripe source of activity, news, guides and just general off-topic banter and fun.

      I wish all members and guests the very best, whether it be with your business or your personal projects.


Search the Community

Showing results for tags 'firewall'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • vpsBoard
    • Announcements & Contests
    • Industry News
  • Virtual Private Servers
    • General Talk
    • Operating a VPS Business
    • Tutorials and Guides
    • Questions and Answers
  • The Lounge
    • The Pub (Off topic discussion)
    • Coding, Scripting & Programming
    • SBC, ARM, Home Automation
  • Marketplace & Reviews
    • Reviews
    • VPS Offers
    • Other Offers
    • Service Requests

Found 6 results

  1. How to install vDDoS Protection - Reverse Proxy Layer 7 Firewall Filter Mitigate DOS, DDOS, SYN Floods, or HTTP Floods attack What is vDDoS Protection? vDDoS Protection is free software to provide a Reverse Proxy Server HTTP(S) protocols. It act as a Layer 7 Firewall Filter & Mitigate DOS, DDOS, SYN Floods, or HTTP Floods attack to protect your website. Features: -Reverse Proxy -DDoS Protection -Robot Mitigator -HTTP challenge/response -reCaptcha Robot challenge -HTTP Denial of Service tools -Cookie challenge/response -Block/Allow Country Code You Want (Status 403) -Limit the request connection coming from a single IP address (Status 503) -CDN Support (CloudFlare, Incapsula...) -Whitelist for Botsearch (SEO Support, Allow Botsearch: Google, Alexa, Bing, Yahoo, Yandex, Facebook...) How it work? vDDoS Protection is Nginx bundled with module HTTP/2; GeoIP; Limit Req, Testcookie; reCaptcha processor... Working like CloudFlare, but vDDoS is software help you build your own System Firewall. If your site does not use protection service: (accept all queries) If your site uses protection service: (challenge all queries) -Human queries: -Bad Bots queries: How to install vDDoS? -vDDoS Protection only support CentOS Server 5/6/7 x86_64 (http://centos.org) & CloudLinux Server 5/6/7 x86_64 (http://cloudlinux.com) -Please go to Homepage and download vDDoS Protection version working on your system (https://github.com/duy13/vDDoS-Protection) -vDDoS Protection should be installed before installing other things (cPanel, VestaCP, LAMP, LEMP...) yum -y install epel-release yum -y install curl wget gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel libatomic_ops-devel perl-ExtUtils-Embed gcc automake autoconf apr-util-devel gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel libatomic_ops-devel perl-ExtUtils-Embed Example: my system is CentOS 7 x86_64 install vDDoS 1.10.1 Version (only need wget a file vddos-1.10.1-centos7): curl -L https://github.com/duy13/vDDoS-Protection/raw/master/vddos-1.10.1-centos7 -o /usr/bin/vddos chmod 700 /usr/bin/vddos /usr/bin/vddos help /usr/bin/vddos setup (This installation takes about 15 minutes or more) vDDoS Command Line? Welcome to vDDoS, a HTTP(S) DDoS Protection Reverse Proxy. Thank you for using! Command Line Usage: vddos setup :installing vDDoS service for the first time into /vddos vddos start :start vDDoS service vddos stop :stop vDDoS service vddos restart :restart vDDoS service vddos autostart :auto-start vDDoS services on boot vddos attack :create a DDoS attacks to HTTP target (in 30 min) vddos stopattack :stop "vddos attack" command vddos help :display this help Please sure download vDDoS source from: vddos.voduy.com How to use vDDoS protect your website? Please edit your website.conf file in /vddos/conf.d Example Edit my website.conf: # nano /vddos/conf.d/website.conf # Website Listen Backend Cache Security SSL-Prikey SSL-CRTkey default no 200 no no your-domain.com no 200 no no default no 307 /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt your-domain.com no 307 /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt your-domain.com yes click /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt "your-domain.com" is my site on my Apache backend want to be Protection by vDDoS "default" is option for All remaining sites /vddos/ssl/your-domain.com.pri is SSL Private key my website /vddos/ssl/your-domain.com.crt is SSL Public key my website Cache: variable: no, yes (Sets proxy cache website on vDDoS) Security: variable: no, 307, 200, click, 5s, high, captcha (Sets a valid for Security Level Protection) Note Security Level: no < 307 < 200 < click < 5s < high < captcha Restart vDDoS after saving: vddos restart Set Real IP traffic from Proxy or CDN: Please edit file cdn-ip.conf # nano /vddos/conf.d/cdn-ip.conf # Cloudflare set_real_ip_from; ... Deny Country or IP: Please edit file blacklist-countrycode.conf # nano /vddos/conf.d/blacklist-countrycode.conf geoip_country /usr/share/GeoIP/GeoIP.dat; map $geoip_country_code $allowed_country { default yes; US yes; CN no; } deny; Allow your IP Address do not need protection & challenge: Please edit file whitelist-botsearch.conf # nano /vddos/conf.d/whitelist-botsearch.conf #Alexa Bot IP Addresses;; ... Use Mode reCaptcha: Please edit file recaptcha-secretkey.conf & recaptcha-sitekey.conf # nano /vddos/conf.d/recaptcha-sitekey.conf # Website reCaptcha-sitekey (View KEY in https://www.google.com/recaptcha/admin#list) your-domain.com 6Lcr6QkUAAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxx your-domain.org 6Lcr6FFFAAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxx ... # nano /vddos/conf.d/recaptcha-secretkey.conf DEBUG=False RE_SECRETS = { 'your-domain.com': '6Lcr6QkUAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxx', 'your-domain.org': '6LcKngoUAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxx' } (Go to https://www.google.com/recaptcha/admin#list and get your key for vDDoS) Recommend? -Recommend You use vDDoS with CloudFlare Free/Pro (hide your website real IP Address) (CloudFlare is Mitigate Firewall Layer 3-4) (vDDoS Protection is Mitigate Firewall Layer 7) -Download vDDoS Protection packages from vDDoS HomePages -Use this soft only for testing or demo attack! vDDoS Protection is Simple like that!
  2. After an update my domains on my unmanaged VPS are not working anymore. It seems that port 80 and 443 are closed and remain closed even after adding rules in iptables. Could there be anything else keeping those ports closed? My VPS is running centos-6-x86_64 Any ideas where to look?
  3. Been a number of years since I last had a nice open source gateway device in place. Used IPCOP prior and really liked it. Was good for segmenting LAN, like throwing insecure stuff in a VLAN, wifi on another VLAN, etc. Going back to using something similar since time to segment experiments (like my filtering and blocking is nice but subjecting others on LAN breaks stuff too much).... Anyone currently using IPCOP, Smoothwall or another similar open source project as a firewall + gateway? Something that is standout these days?
  4. I am new to linux/vps (though I know quite a bit) and familiar with windows desktop. From windows point of view, AFAIAK firewall software would control which processes have access to the internet/sockets etc. In linux vps, I am the only user (root) of the system and I can only install software (so I would only those needed). So, why there is any need of firewall in the vps? What worst could happen if I don't run on the vps? ps: I have disabled "password authentication" on sshd_config and use keyfile, this is the only security that I use as of now. (no php, no mail, no dns on vps, just going to be plain nginx/lighttpd)
  5. [US ONLY] ESET Licenses

    I do believe that this fits the hosting industry as it offers security for all businesses and their networks :) SolidShellSecurity, LLC is now a proud partner with ESET.com and because of that, we can resell licenses at discounted prices. ESET is backed fully by SolidShellSecurity, LLC and is used by all our businesses that we manage which includes some INC 5000 businesses. In order to provide you with the best quote possible, please e-mail us or send me a PM with your needs/desires and what you want to secure, and we will work out a custom quote which will be cheaper then going to ESET directly. BONUS: Because SolidShellSecurity, LLC stands behind ESET fully, we also provide support for the product and all services relating to it. For more information: http://solidshellsecurity.com/_forms/ESET_ENDPOINT_SECURITY_INFORMATION.pdf -- This will explain the protection and security from one of our most popular selling licenses.
  6. For long I've been running Debian on VPS instance wide open or with a stack of iptables commands. Been getting smacked by some bad traffic lately and after debugging all that, thought it was time for something a bit tidier and easier to deal with. Yes iptables rocks, but it's a long learning curve and prone to massive screwups due to admin error. So let's install ufw: Install ufw: sudo apt-get install ufw (ufw will NOT start post installation, so as to not lock you out) Open ports 22 and 80 (add others if needed) sudo ufw allow 22 sudo ufw allow 80 Start ufw: sudo ufw enable Turn on logging (will put entries in /var/log/syslog): sudo ufw logging on Get status of ufw: sudo ufw status verbose Disable ufw: sudo ufw disable Block a malicious IP with ufw: sudo ufw deny ip