How to safely perform a ddos stress test?

Others 2022-04-22 16:13:19 views: 0

As DDoS attacks become less expensive, they are becoming more common. Finding an effective ddos ​​defense method is a problem that every website needs to pay attention to these days. There are many types of DDoS attacks. The most basic DDoS attack is to use reasonable service requests to occupy too many service resources, so that legitimate users cannot get services. If you want to effectively prevent ddos , you can properly test the bearing capacity of the server.

1. Ensure the security of the server system

The first thing to do is to ensure that the server software does not have any vulnerabilities to prevent attackers from entering. Make sure the server is up-to-date with security patches. Remove unused services on the server, closing unused ports. For a website running on a server,

Make sure it has the latest patches and no security holes.

2. Hide the real IP of the server

The front-end of the server is added with CDN transit (for free, there are Baidu Cloud Acceleration, 360 Website Guard, Acceleration Music, Safe Bao, etc.), if you have sufficient funds, you can buy a high-defense shield to hide the real IP of the server, and use CDN for domain name resolution. IP,

All resolved subdomains use the CDN's IP address. In addition, other domain names deployed on the server cannot be resolved using real IP, and all are resolved using CDN.

In addition, to prevent the server from leaking IP when transmitting information to the outside world, the most common thing is that the server does not use the sending email function. If you have to send emails, you can send them through a third-party proxy (such as sendcloud), so that the IP displayed to the outside world is the IP of the proxy.

In short, as long as the real IP of the server is not leaked, the prevention of DDOS with small traffic below 10G does not cost much, and the free CDN can handle it. If the attack traffic exceeds 20G, then the free CDN may not be able to withstand it, and you need to purchase a high-defense DDoS firewall to deal with it.

If you want to know how much traffic pressure your server can withstand, you can perform the ddos ​​stress test appropriately. The ddos ​​stress test is a single-machine flood generator. The principle is to instantly generate thousands of reasonable http requests, so as to achieve the effect of the target server being unavailable. , 90% of the sites can hang. So don't open it often, otherwise the website will be paralyzed.

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=325142169&siteId=291194637
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com