C37c1cd4347cd3be4c3cc87411d70d1d241199b8
By:
diogenes

How i can prevent a lot of get requests on apache

October 16, 2016 185 views
Apache

How i can prevent this type of requests on my server?
I'm using a program "webserver stress toll 8" to generate them but can't prevent and block this access.
I try to user mod_evasive on apache and fail2ban, but my settings doesnt work.

191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
191.184.247.88 - - [15/Oct/2016:20:36:59 -0400] "GET /grupos-com-guia.php HTTP/1.0" 200 49027 "-" "Mozilla/5.0 (compatible; Webserver Stress Tool 8; Windows); (simulated_by_Webserver_Stress_Tool)"
1 comment
  • Can you share the fail2ban rules you're using? It should be possible to prevent these attempts with a tool like fail2ban by only allowing so many requests before blocking access. Do you have a configured firewall on your droplet? If so, what rules if any are you using currently?

Be the first one to answer this question.