> On one of the sites, a small amount of clicking around in the admin will
> cause that user's IP to be blocked with a message like:
Is the firewall and the web server on the same host? First, I'd check
the destination port with netstat on the server. Then analyze the
requests (e.g., in web server logs -- if the critical mass is destined
for your http port, that is).
> I can sidestep the problem by changing the CT_LIMIT value in ConfigServer
> Firewall to a very high value or disabling it, but then I lose the DDOS
> protection it provides.
Does it address the scenario where the whole bandwidth to the firewall
is consumed by malicious requests?
With kind regards,
--
Baurzhan Ismagulov
http://www.kz-easy.com/
--
You received this message because you are subscribed to the Google Groups "Django users" group.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
No comments:
Post a Comment