Hi, somebody I know has a fairly successful site, and over the past few days somebody has launched a DDoS attack on the site. There was no protection, however the owner of the site got his host to install "Juniper" firewall. This blocked a very large amount of the attacks, but the attack was too strong and it caused a DDoS attack on the firewall, rendering it useless. So I'm requesting for some help on behalf of this person... they're using a Linux server. Can anybody suggest any software, free or paid, that will defend the server against this huge attack? Thank you.
I will suggest configcsf, configcsf is IDS which can be installed on linux machine. If you are running cpanel/whm you can manage configcsf through web interface than. http://configserver.com/cp/csf.html You can also PM me - if you want me to look into the matter - I will charge some money against it. use rkhunter and rootkit to find out the attack clause
Thanks for your replies. This attack was huge and in the end my friend had to switch host. The host he has moved to includes DDoS protection.
There's no software that will block a decent DDoS attack. There are various types and models of hardware firewall (such as Juniper) some are only designed to handle smaller attacks, which is not much good if multiple Gbps are being thrown at a server. The types that can handle seriously large attacks are pricey.
I would try and take legal action against most, if not all of the IP addresses involved in the attack.