GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Server question..... Being hammered by POST

buyandsell · 10-11-2014, 06:09 PM

hey I have a Cisco ASA that will do packet inspection and block POST or whatever you can find a ASA5200 for a few grand on ebay

Before that I used IPTABLES sort of a poormans packet inspection, heres an example:

iptables -A INPUT -p tcp --dport 80 -i eth0 -j HTTP_FILTER
iptables -A HTTP_FILTER -j DROP -m string --from 30 --to 60 --algo bm --string 'POST '

this is kinda rudimentry and you need to keep it stateless - I had troubles with CONNTRACK if it wasn't stateless

10-11-2014, 06:09 PM
buyandsell Confirmed User Industry Role: Join Date: May 2008 Location: USA Posts: 692	hey I have a Cisco ASA that will do packet inspection and block POST or whatever you can find a ASA5200 for a few grand on ebay Before that I used IPTABLES sort of a poormans packet inspection, heres an example: iptables -A INPUT -p tcp --dport 80 -i eth0 -j HTTP_FILTER iptables -A HTTP_FILTER -j DROP -m string --from 30 --to 60 --algo bm --string 'POST ' this is kinda rudimentry and you need to keep it stateless - I had troubles with CONNTRACK if it wasn't stateless