Ok, i've been attacking for few days and been reading lots of tutorials. So here's my advice based on the tutorials.
Use this comand to find out the IP which has alot connections.
For WWW.
Code:
netstat -apn|grep :80 |awk '{print $5}'|sort
For OTS.
Code:
netstat -apn|grep :7171 |awk '{print $5}'|sort
If there's any please block it with this command.
Code:
iptables -A INPUT -s IP -j DROP
Now let's try to fight with DoS attacks.
Install the apf, a firewall.
Code:
wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz
Code:
tar -xvzf apf-current.tar.gz
Configure - common ingress (inbound) TCP.
Code:
IG_TCP_CPORTS="22,80,7171"
22 SSH
80 WWW
7171 OTS
Start it by.
Now we will install DDoS Deflate with apf.
Code:
wget http://www.inetbase.com/scripts/ddos/install.sh
That's it. Would be nice if i get some reputation from you, thanks.