block all ports except for the ones im using
- Edge100x
- Founder
- Posts: 12958
- https://www.youtube.com/channel/UC40BgXanDqOYoVCYFDSTfHA
- Joined: Thu Apr 18, 2002 11:04 pm
- Location: Seattle
- Contact:
Re: block all ports except for the ones im using
It isn't really possible to block all DDoS attack methods in advance, since there are hundreds of different attack vectors. The best course of action is to start by letting our system deal with the attacks for you, and then creating your own firewall rules to tweak from there, if you commonly see some attacks that are missed or cause damage before our filter kicks in.
Re: block all ports except for the ones im using
Any filters you apply would need to be specifically tuned to block any attacks you are seeing. If there is a specific type of attack that you keep seeing, then you can adjust a filter for that specific attack. Otherwise, trying to guess what may work, without knowledge of what attacks you would be seeing, would be pretty much the same as guessing the next winning lottery numbers.
If you have data on the attacks you have been seeing, we may be able to help you construct a filter in a help request from your control panel.
If you have data on the attacks you have been seeing, we may be able to help you construct a filter in a help request from your control panel.
TimeX
Re: block all ports except for the ones im using
For building a custom filter, a traffic capture would be needed. Anything with an example match already has a filter applied and doesn't need any further action.
TimeX
Re: block all ports except for the ones im using
It is difficult so say much from these. There aren't obvious attack packets that are standing out, and we don't know whether this is considered normal traffic for your service(s).