1

I'm getting dos on a dedicated server with windows+apache, ive asked support to install a firewall and got a cisco pix 501, the attacks are on port 80 to a certain site, what can I do to block it?

I thought of putting a cap on amount of connections Disallowing access for certain ip ranges (the attackers use mainly ukraine and india)

Any ideas?

more than that, how do I do it with the cisco? any command lines would help

tridant
  • 11
  • 1

1 Answers1

4

They gave you a pix 501 to stop a DDoS ? outch sorry but that's a crappy old SOHO class firewall it will probably make things worse. Tell them to filter the traffic upstream of your connection

Zypher
  • 36,995
  • 5
  • 52
  • 95
  • Indeed. Especially since the PIX line is officially dead and has published compromisable vulnerabilities available. – Scott Pack Feb 12 '11 at 01:46