Score:0

Handling DDoS HTTP Attack

ca flag

I’ve experiencing DDoS attack today and I’ve configured Cloudflare rate limiter, also activated WAF. Cloudflare blocked several hundred thousands request. Unfortunately, my server still experiencing pretty high flood request. I don’t know why it passed Cloudflare, even if I’ve setup rate limiter.

At last I forced to disable Cloudflare proxy and let AWS Web ACL handle it. Did I miss something here? Please help. I really want to use Cloudflare since AWS Web ACL pricing just not suite well with my current financial (small startup).

in flag
Does this answer your question? [I am under DDoS. What can I do?](https://serverfault.com/questions/531941/i-am-under-ddos-what-can-i-do)
Tim avatar
gp flag
Tim
What is an "AWS Web ACL" - which service are you referring to? AWS WAF? AWS NACL? Dealing with these things in layers may help. Do you have your server security groups set up so only CloudFlare IPs can reach the server? If you haven't done that anyone can hit your server directly rather than via CloudFlare https://www.cloudflare.com/ips/
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.