Wired GORILLA - Hosting - Scripting - Linux - PHP - mySQL - DDOS check via number of connections

Linux Shell commands

DDOS check via number of connections

Main Menu

Search the Site

Tutorials

cPanel Server Trixs

Linux Shell commands

Web Development

Mixed News Bites

Adobe Photoshop

Pinterest gets $100M from owner of Kobo Inc. 19 May 2012 | 5:20 pm AUSWEB Web Hosting BLOG
How to create backups of applications in Installatron 18 May 2012 | 9:36 am AUSWEB Hosting Tutorials
How to uninstall applications from Installatron 18 May 2012 | 9:33 am AUSWEB Hosting Tutorials
How to view and edit the applications installed by Installatron 18 May 2012 | 9:30 am AUSWEB Hosting Tutorials
How to import an existing application into Installatron 17 May 2012 | 4:55 pm AUSWEB Hosting Tutorials
How to install an application in Installatron 17 May 2012 | 4:17 pm AUSWEB Hosting Tutorials
How to browse for applications in Installatron 17 May 2012 | 4:02 pm AUSWEB Hosting Tutorials
How to find Installatron in cPanel 17 May 2012 | 3:59 pm AUSWEB Hosting Tutorials
Should I back up my website? 17 May 2012 | 11:16 am AUSWEB Hosting Tutorials
What is Spam? 17 May 2012 | 11:15 am AUSWEB Hosting Tutorials
What is an email auto-responder? 17 May 2012 | 11:13 am AUSWEB Hosting Tutorials
Can Anything Take Down the Facebook Juggernaut? 17 May 2012 | 10:40 am AUSWEB Web Hosting BLOG
Microsoft’s Bing search engines to use Facebook tips 14 May 2012 | 12:35 am AUSWEB Web Hosting BLOG
LinkedIn Is Buying SlideShare For $119 Million 12 May 2012 | 11:12 pm AUSWEB Web Hosting BLOG
Equinix to Expand in Asia-Pacific; Will Acquire Data Centers from Asia Tone in Cash Deal Valued at US $230.5M 2 May 2012 | 1:41 pm AUSWEB Web Hosting BLOG
May VMWare Special – Double Ram & Bandwidth 30 Apr 2012 | 3:52 pm AUSWEB Web Hosting BLOG
Hardening WordPress: 8 Steps to a Secure Website 26 Apr 2012 | 3:07 pm AUSWEB Web Hosting BLOG
Australian Court Rules Google Breached Consumer Protection Laws 4 Apr 2012 | 4:35 pm AUSWEB Web Hosting BLOG
cPanel install is failing with current ‘latest’ script 3 Apr 2012 | 6:20 pm AUSWEB Web Hosting BLOG
Equinix accelerates $50m Sydney Data Centre Expansion 3 Apr 2012 | 4:27 pm AUSWEB Web Hosting BLOG
Internet Etiquette Series – Email DOs and Don’ts 2 Apr 2012 | 12:18 pm AUSWEB Web Hosting BLOG
New Facebook Search Engine In The Works, Should Google Worry? 1 Apr 2012 | 9:20 pm AUSWEB Web Hosting BLOG
Joomla 1.5.26 security released 29 Mar 2012 | 8:03 am AUSWEB Web Hosting BLOG
WHM – How To change NameServer Ip 14 Jan 2012 | 9:31 am Wired Gorilla
Linux VPS speed test 6 Oct 2011 | 10:24 pm Wired Gorilla
Classic Nintendo CEO statement 3 Aug 2011 | 2:20 pm Wired Gorilla
How to change the hostname in Linux 16 Jul 2011 | 1:54 am Wired Gorilla
iOS 4.3.3: Install, Unthethered Jailbreak, Unlock with Sn0wbreeze 19 Jun 2011 | 5:36 pm Wired Gorilla
Plesk Login prompt error 5 Jun 2011 | 3:44 pm Wired Gorilla
Excluding Packages from Yum Update 9 May 2011 | 12:00 pm Wired Gorilla
Fix corrupted RPM database on CentOS 5 6 May 2011 | 12:42 am Wired Gorilla
cPanel transfer restore error 6 May 2011 | 12:40 am Wired Gorilla
How to install CPAN libwww-perl 2 May 2011 | 6:59 pm Wired Gorilla
How to remove Tomcat on cPanel 24 Dec 2010 | 12:31 am Wired Gorilla
Apache logs 14 Nov 2010 | 8:16 pm Wired Gorilla
Virtuozzo: Fixing Windows VPS Container Start Errors 24 Mar 2010 | 12:53 pm Wired Gorilla

DDOS check via number of connections

Written by wiredgorilla

Tuesday, 12 February 2008

A quick and usefull command for checking if a server is under ddos is

That will list the IPs taking the most amount of connections to a server. It is important to remember that the ddos is becoming more sophistcated and they are using fewer connections with more attacking ips. If this is the case you will still get low number of connections even while you are under a DDOS.

this MUST be executed in one line via SSH


netstat -anp \|grep 'tcp\\|udp' \| awk '{print $5}' \| cut -d: -f1 \| sort \| uniq -c \| sort -n

additionally you can check the connection ports here

lsof | grep ESTABLISHED
lsof | grep LISTEN

lsof -p PID

Reddit!

Del.icio.us!

Google!

Live!

Slashdot!

Netscape!

Technorati!

StumbleUpon!

Newsvine!

Furl!

Yahoo!

Ma.gnolia!

Free social bookmarking plugins and extensions for Joomla! websites!

Last Updated ( Sunday, 02 March 2008 )

< Prev		Next >