Detect bad outgoind trafic KVM

N

naturlight

Member
Jan 2, 2011
65
0
6
Hello everybody,
There is 2-3 days an User on KVM did DDOS attack ..
I would you like to know if it's possible to block this , to disable or minimize a bad user.

I think about this :
If an user do more than x SYN_ACK then qm suspend the vmid or iptables ban the ip on UDP , ICMP ..
What i'm doing :
A script to protect the outgoing trafic if anybody want to contribue ..
 
Last edited:
At this time i created a script wich allow 1000 UDP outgoing packets / client bridge and 3 icmp requets outgoing /sec for each client bridge .
Now i would like limit the bandwidth outgoing on UDP at 5Mbps .. what can i use ?
I look for Dummynet is seems good but not stable under debian
http://info.iet.unipi.it/~luigi/dummynet/
How many iptables rules can support the server ? Any idea ?
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back