[ANTIDDOS] for WHM/cPanel with vDDoS Proxy Protection



STEP 1: Install WHM/cPanel

cd /home && curl -o latest -L https://securedownloads.cpanel.net/latest && sh latest


More documentation:
https://documentation.cpanel.net/display/68Docs/Installation+Guide

STEP 2: Install vDDoS Proxy Protection

vDDoS Proxy Protection is free software to provide a Reverse Proxy Server HTTP(S) protocols. It act as a Layer 7 Firewall Filter & Mitigate DOS, DDOS, SYN Floods, or HTTP Floods attack to protect your website.

curl -L https://github.com/duy13/vDDoS-Protection/raw/master/latest.sh -o latest.sh
chmod 700 latest.sh
bash latest.sh


STEP 3: Change the Apache SSL port and Apache non-SSL IP/port

Tweak settings >> Search: Apache SSL port and Apache non-SSL IP/port

More documentation:
https://documentation.cpanel.net/display/1144Docs/Tweak+Settings+-+System#TweakSettings-System-Apachenon-SSLIP/port

Apache non-SSL IP/port

0.0.0.0:80 default >> Change to: 0.0.0.0:8080

Apache SSL port

0.0.0.0:443 default >> Change to: 0.0.0.0:8443



Save and Re-Check Apache port:

[root@vDDoS-cPanel ~]# netstat -lntup|grep httpd
tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 993/httpd
tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 993/httpd
tcp6 0 0 :::8080 :::* LISTEN 993/httpd
tcp6 0 0 :::8443 :::* LISTEN 993/httpd


STEP 4: Config vDDoS Proxy Protection

For example, the IP Addr of your server is 1.2.3.4:

nano /vddos/conf.d/website.conf

# Website Listen Backend Cache Security SSL-Prikey SSL-CRTkey
default http://0.0.0.0:80 http://1.2.3.4:8080 no no no no
default https://0.0.0.0:443 https://1.2.3.4:8443 no no /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt


Restart vDDoS service after you have configured:

/usr/bin/vddos restart

Auto-start vDDoS services on boot:

/usr/bin/vddos autostart

STEP 5: Config vDDoS Auto Add

vDDoS Auto Add is a addon support for vDDoS Proxy Protection - Monitor Domains/Aliasdomains/Subdomains in Panel Hosting, Web Server, List Domain, Virtual Host... and automatically add them into the website.conf file.

nano /vddos/auto-add/setting.conf

Default Setting for vddos-add command:

SSL Auto
Cache no
Security no
HTTP_Listen http://0.0.0.0:80
HTTPS_Listen https://0.0.0.0:443
HTTP_Backend http://1.2.3.4:8080
HTTPS_Backend https://1.2.3.4:8443


Set Crontab:

echo '*/15 * * * * root /usr/bin/vddos-autoadd panel cpanel apache' >> /etc/crontab


STEP 5: Config vDDoS Auto Switch

vDDoS Auto Switch is a addon support for vDDoS Proxy Protection - Automatically identifies overloaded websites and changes their Security Mode.

echo '*/5 * * * * root /usr/bin/vddos-autoswitch checkalldomain high' >> /etc/crontab
echo '0 */3 * * * root /usr/bin/vddos-autoswitch flushalldomain /vddos/conf.d/website.conf no' >> /etc/crontab


More documentation:

http://vddos.voduy.com/

https://www.lowendtalk.com/discussion/100518/install-vddos-proxy-to-antiddos-dos-syn-flood-http-floods-attack

https://www.lowendtalk.com/discussion/102642/ddos-protection-for-website-with-vddos-proxy-protection-vddos-layer4-mapping

Top News