How can i protect my Pfsense on DDOS of my Clients
-
i have many attack from my clients last month and my firewall got hang, can anyone give me an idea to protect my pfsense firewall from being attack by DDOS.
Thanks and Regard,
 -
That is not an attack.. That is a alert on how many flows.. Those numbers mean nothing without context.. Those might be normal for what the devices is doing.. Simple p2p client could create hundreds of connections to different IPs in a few seconds..
I would suggest you do some research on what the flow flood alert is in ntop.. More than likely you just have the alert levels set too low for the type of traffic your clients are creating/doing..
-
my firewall got hang
pfSense stopped responding? Internet went down? More details to what you tried and didn't work?
-
Thanks for the reply sir johnpoz
and mr. harvy66 yes my internet went down after my firewall receive many flow floods
-
"firewall receive many flow floods"
Was that some other log.. 26 flows in 3 seconds is not anything to write home about.. Shoot a browser opening up a few pages could do that every time you launch it.. Shoot depending on the website and how they host images.. Say a forum page with user avatars hosted all over, or signature with images in them..
Not sure what your issue was - but not related to the number of flows.. Now if you had 26000 in 3 seconds that could be a problem ;)
-
I think we need some actual numbers of how many states you have, how many new ones are being created, and what your throughput is.
