[squid-users] Looking for ideas on how to use squid in order to protect against a DOS\DDOS.

Yuri Voinov yvoinov at gmail.com
Mon Nov 30 19:22:01 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
 
This is very old idea. Reverse cache-proxy uses for DDoS protection (as
of one aspect) long time ago.

01.12.15 1:19, Eliezer Croitoru пишет:
> I was wondering if someone have a nice idea on how to use squid to protect against DOS\DDOS http\https
attacks.
>
> The basic way I was thinking is rate limiting by counting the client
IP page HITs but I am unsure about it since it can actually catch the
good guys and bite my squid setup.
>
> The other way I was thinking was some kind of a challenge like a
captcha page.
>
> Also I have seen something like JavaScript browser challenge being used.
>
> What do you think would be the right choice?
>
> If you have another idea please send me or the list an email.
>
> Thanks,
> Eliezer
>
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
 
iQEcBAEBCAAGBQJWXKHZAAoJENNXIZxhPexGSmcH/i10KVWqhVb/IUipG+/qqKlg
i08k46yolYbr5i1LsgDSJeX9OL/xGAaYFsGaZ3Mgjk8gT7zwUQyDBszsZIiOTiZI
NDI9i7YbUnL3mrCKKnZeCep8MXVM54apr3cgflWjJRhm1EzfqyFXHtVSl2KBDW/e
4Sb6VTHCknJtnVQKrHYbB7nQma4YrbjxxCZzZyZcb8tOlJWgZfn3xNKFJuRIlcbf
YbEpqlQgDnz27eUAdCHO2C0uBTT9T/GWJ2JcF6vJ25UwxJh7Q81B3Gq4HFuBHAtX
j7m0cE8EWv+pgK0yzEoMI2NynNOzxCNDxlQ8o+s2iS3bfKwpLneedorSDGgAX70=
=/OdU
-----END PGP SIGNATURE-----



More information about the squid-users mailing list