如何保护网站免受 DoS 攻击 [英] How to protect a website from DoS attacks

问题描述

保护站点免受 DoS 攻击的最佳方法是什么.知道流行的网站/服务如何处理这个问题吗?

What is the best methods for protecting a site form DoS attack. Any idea how popular sites/services handles this issue?.

在应用程序、操作系统、网络、托管级别有哪些工具/服务?

what are the tools/services in application, operating system, networking, hosting levels?.

如果有人能分享他们处理的真实经历就好了.

it would be nice if some one could share their real experience they deal with.

谢谢

推荐答案

你确定你说的是 DoS 不是注入?在 Web 编程端，您无能为力来阻止它们，因为它更多的是在物理层绑定连接端口并阻止它们，而不是在应用层(Web 编程).

Sure you mean DoS not injections? There's not much you can do on a web programming end to prevent them as it's more about tying up connection ports and blocking them at the physical layer than at the application layer (web programming).

关于大多数公司如何防止它们，许多公司使用负载平衡和服务器群来取代进入的带宽.此外，许多智能路由器正在监控来自 IP 和 IP 范围的活动，以确保没有没有太多的查询进来(如果有的话，在它到达服务器之前执行一个块).

In regards to how most companies prevent them is a lot of companies use load balancing and server farms to displace the bandwidth coming in. Also, a lot of smart routers are monitoring activity from IPs and IP ranges to make sure there aren't too many inquiries coming in (and if so performs a block before it hits the server).

我能想到的最大的故意 DoS 是在 woot-off 期间的 woot.com.我建议尝试维基百科( http://en.wikipedia.org/wiki/Denial-of-service_attack#Prevention_and_response )，看看他们对预防方法有什么看法.

Biggest intentional DoS I can think of is woot.com during a woot-off though. I suggest trying wikipedia ( http://en.wikipedia.org/wiki/Denial-of-service_attack#Prevention_and_response ) and see what they have to say about prevention methods.

这篇关于如何保护网站免受 DoS 攻击的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！