Hi all, what should I do now if my server is getting attack from BotNet? can i point my domain to other website domains? which ip should I point to to stop botnet? its been over 2 weeks now. please help thnks
You cannot "Stop" a ddos/botnet attack only divurt or filter it away from you, lol! If anyone tells you that they can stop a ddos/botnet attack there lieing, However if you have the server's or the filtering/firewalls to filter the ddos attack then its just a matter as to what extent your filters/firewalls can hold.... If you have any questions about a botnet/ddosing please come to me first im in college for this i understand it clearly and will help with what i can. -iLLuSioN
First, lets find out how many attacks we are getting, to do this execute this command at bash netstat -anp |grep ‘tcp\|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n Code (markup): This will list the ips that have so many connections to the server. Now lets null-route those ips with iptables route add "ipaddress here" reject Code (markup): Do not include " at the command.