Explicit declaration of indicated is not always indicated. Example:
line 712, 272 and 736
for (i = 0; i < 16; i++)

ipv6 work ?

Hi

I used captcha in /vddos/conf.d/website.conf and vddos restart. It asked to fill up the sitekey and private key in /vddos/conf.d/recaptcha-sitekey.conf and /vddos/conf.d/recaptcha-secretkey.conf. and I did what is asked.

reCAPTCHA is shown correctly on the front but after tick it and verified, I got 404 error.

I also got the error on https://www.google.com/recaptcha/admin

We detected that your site is not verifying reCAPTCHA solutions. This is required for the proper use of reCAPTCHA on your site. Please see our developer site for more information.

Is it because it didnt pass along reCAPTCHA to Google? Please Kindly help. Thank you.

Có thể kết hợp với cloudflare đặt trước Proxy sẽ đảm bảo hơn trước các cuộc tấn công lớn.
tạo 1 script nhỏ, monitor ngx_req_limit post request lên cloudflare api chặn IP đầu ngoài có thể là phương án khả thi.

Hellow
Thanks for your best program.But I can't use it now.
My python version is 2.6.6 and It shows ERROR! Installing Python fail!

Hi

To start using WAF NAXSI, all I need to do is to remove "Hash" from ALL of the lines in waf.conf? Thank you.

############################ WAF NAXSI

#### Enable of Disable:
SecRulesEnabled;
DeniedUrl "/444.html";

#### Ban after:
CheckRule "$SQL >= 8" BLOCK;
CheckRule "$RFI >= 8" BLOCK;
CheckRule "$TRAVERSAL >= 4" BLOCK;
CheckRule "$EVADE >= 4" BLOCK;
CheckRule "$XSS >= 8" BLOCK;

############################ Ban Bad Client:
if ($http_user_agent ~* "PHP|curl|Wget|HTTrack|Nmap|Verifying|PingBack|Pingdom|Joomla|Wordpress") { return 444; }
if ($http_user_agent = "") { return 444; }
if ($http_user_agent = " ") { return 444; }
if ($http_user_agent = "-") { return 444; }
if ($http_user_agent ~* "\b(proxy|hide|sock|free|check|trans|ping)\b") { return 444; }
if ($http_referer ~* "\b(hide|sock|free|check|trans|ping|speed|test)\b") { return 444; }

Hello,

When I use vDDOS With the WHMCS the payments are not automatically confirmed.

What is a data return problem for the system of which is your list of permissions?

Even using redirect.conf in the NON-PROTECTION option, the problem still occurs, even with all protections turned off.

Your skype is voduy13? No results for this nick.

I try to use command "vddos setup"
but long time process

...Installing Prepare Package success!
...

tried to add the following lines into
/vddos/conf.d/redirect.conf
/vddos/conf.d/domain/pimmelbande.fun/redirect.conf
/vddos/conf.d/domain/www.pimmelbande.fun/redirect.conf

if ($schemedomain = "http://pimmelbande.fun") { return 301 https://pimmelbande.fun$request_uri; } if ($schemedomain = "http://www.pimmelbande.fun") { return 301 https://pimmelbande.fun$request_uri; } if ($schemedomain = "https://www.pimmelbande.fun") { return 301 https://pimmelbande.fun$request_uri; }

but doesnt work

try it: https://www.pimmelbande.fun/

there are many cpanel errors, such as:

• does not read the dedicated ip address
• does not read the ssl certificate
  and more .
  We are waiting for new versions!

reference : http://www.webhostingtalk.com/showthread.php?t=1715221

I think your recent update allowing swap may have broken something else, have a look at the screenshot from the monitor window:-

how to make a folder with a disabled firewall? location https://site.com/folden12345/ {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass https://0.0.0.0:443;
} does not disable the firewall

Thanks

I need build script to make it work on debian-based distros too (as CentOS is updated very rarely).
No need to adapt it, just share build commands and i will try to modify them for myself.

Me gain...

I will be setting up proxy's for my TCP ports and was wondering if there was a way to specify a port range in the '/vddos/conf.d/tcp-udp-proxy.conf' file?

For example, if I wanted to open ports 3500,3501,3502,3503,3504 and 3505 (3500:3505) can I specify this? The only way I can think of doing this would be to setup the tcp-udp-proxy.conf like below.

Any suggestions would be much appreciated.

stream {
server_traffic_status_zone;
geoip_country /usr/share/GeoIP/GeoIP.dat;
server_traffic_status_filter_by_set_key $geoip_country_code country::*;
limit_conn_zone $binary_remote_addr zone=ip_addr:10m; # Limit perip

server {
	listen 0.0.0.0:3500;
	listen 0.0.0.0:3501;
	listen 0.0.0.0:3502;
	listen 0.0.0.0:3503;
	listen 0.0.0.0:3504;
	listen 0.0.0.0:3505;
	limit_conn ip_addr 1; 		# Limit perip 1 (conn/s)
	proxy_download_rate 100k;	# Limit Download 100 (KB/s)
	proxy_upload_rate   100k;	# Limit Upload 100 (KB/s)
	proxy_pass 1.2.3.4.5:$server_port;		# Reverse proxy to backend_name
	server_traffic_status_filter_by_set_key $remote_addr ip_addr::$server_addr:$server_port;
}

}

Dear duy13
How to modify 5s to 1s.
Thank you.

Hellow
Vddos is a really amazing software，But after use vddos,I can't get really ip. What I should do?

Thanks

Hello,

I need to change this page --> http://prnt.sc/dqffmf

How to change? I need you help.

Hi,
Error:
/etc/init.d/vdos status
● vdos.service - SYSV: vddos is an HTTP(S) DDoS Protection Reverse Proxy
Loaded: loaded (/etc/rc.d/init.d/vdos; bad; vendor preset: disabled)
Active: failed (Result: resources) since sab 2018-06-16 06:58:14 EDT; 1min 21s ago
Docs: man:systemd-sysv-generator(8)
Process: 2100 ExecStart=/etc/rc.d/init.d/vdos start (code=exited, status=0/SUCCESS)

giu 16 06:58:14 node1-s1-antiddos-l7 systemd[1]: Starting SYSV: vddos is an HTTP(S) DDoS Protection Reverse Proxy...
giu 16 06:58:14 node1-s1-antiddos-l7 systemd[1]: PID file /var/run/vddos.pid not readable (yet?) after start.
giu 16 06:58:14 node1-s1-antiddos-l7 systemd[1]: Failed to start SYSV: vddos is an HTTP(S) DDoS Protection Reverse Proxy.
giu 16 06:58:14 node1-s1-antiddos-l7 systemd[1]: Unit vdos.service entered failed state.
giu 16 06:58:14 node1-s1-antiddos-l7 systemd[1]: vdos.service failed.

WHY?

possible to add more protections like anti ssl handshake flood?

Hi,
As soon as vDDoS is enabled all the sites with the recap are giving this error: Error! Captcha error!
Why?

From https://community.centminmod.com/threads/ddos-protection.14431/page-2#post-62015

After install

/etc/init.d/vdos
Usage: /etc/init.d/vdos {start|stop|status|restart|condrestart|try-restart|reload|force-reload|configtest}

/etc/init.d/vdos status
Unit vdos.service could not be found.

ls -lah /etc/init.d/vdos
-rwx------ 1 root root 1.6K Apr  2 03:30 /etc/init.d/vdos

vddos nginx config check, it's missing /vddos/vddos.conf which is i assume the nginx.conf equivalent. From auditd logging somewhere in /usr/bin/vddos setup routine it unlink removed /vddos/vddos.conf for some reason ?

ausearch -k vddos | aureport -f -i | fgrep 'vddos.conf'
32. 04/07/2018 12:56:50 /vddos/vddos.conf open yes /usr/bin/cp root 2987
44. 04/07/2018 12:57:06 /vddos/vddos.conf unlinkat yes /usr/bin/rm root 3014

/vddos/vddos -t
nginx: [emerg] open() "/vddos/vddos.conf" failed (2: No such file or directory)
nginx: configuration file /vddos/vddos.conf test failed

vdos nginx module directory missing

ls -lah /usr/lib64/vddos/modules
ls: cannot access /usr/lib64/vddos/modules: No such file or directory

Its Possible to Chnage the Image in the vDDoS Monitor ? i think its in the binary file

Im trying to use a CDN called StackPath, I allowed all stackpath IPs but sadly it doesn't work.
When I start using stackpath the protection gets into a infinite loop until it reachs d5 and give the error.
Can you check it by yourself? (stackpath ahve 30 days trial so you can test)

Hi @duy13

The respond from my server is logged by the service provider. I tried to whitelist their IP in bot search whitelist file but not working. Please kindly help.

<!DOCTYPE html>

<html>

<script src="/cdn-cgi/apps/head/mBfG_zkG0iN4p0TpZQK87kC5ymc.js"></script><script src="/vddosw3data.js"></script>

<body>

<div w3-include-html="/5s.html"></div>

<noscript><h1 style="text-align:center;color:red;"><strong>Please turn JavaScript on and reload the page.</strong></h1></noscript>

<script>

w3IncludeHTML();

</script>

<script language="javascript">document.cookie="vDDoS=dfc6b89a2384daa7679903ba5b22bcd9 ;  path=/";setTimeout("location.href='https://dreambox.tw/?wc-api=WC_Gateway_ECPay&d=1';",5000);</script>

<center>

<br />

<br />

<center/>

</body>

</html>

Hi!
Is there any way to make protection levels auto escalation based on requests limits?
Or - if it is already is - how it is working?
Best regards,
Yury.

Hi I got the error : Unfortunately, your browser is too old to work on this website while using "high"
security level. I am sure I update Safari(Mac OS) to the latest. Please Kindly help. Thank you.

I seem to be receiving a number of the below messages in my /var/log/vddos/error log, would anyone have any suggestions on how to correct this?

2017/07/08 17:25:17 [crit] 10671#10671: ngx_slab_alloc() failed: no memory in vhost_traffic_status_zone "ngx_http_vhost_traffic_status"

Hi Duy,

How are you doing? Hope all is good.

If I enable Authenticated Origin Pulls on Cloudflare, will it affect function of vddos Proxy? This prevents clients from sending requests directly to your origin, bypassing security measures provided by Cloudflare, such as IP and Web Application Firewalls, logging, and encryption.

Thanks.

Please enable an option to disable SPDY since it causes errors with Sockets in some applications (err_spdy_protocol_error in browser console)

How to setting in website.conf if I using
Varnish ->Nginx->Apache

Http Port
Varnish : 82
Nginx : 80
Apache : 8181

SSL Port
Varnish : 82
Nginx : 443
Apache : 8443

I use varnish for caching and nginx as reverse proxy

Hello, How to use captcha v3? I know that v2 is used as captcha+

Intranet environment cannot be installed

I am using vDDOS. I am installing and using 2 servers, but I want to install 1 more. But there is an error. Check the error in the image below.
Did you end your support?

Please tell me the solution.

Hi,
How do I set up automatic SSL generation via acme.sh?
Also for automatic renewal.
I do not understand how to automatically generate SSL through vDDoS.

Hi there i was wondering if it is possible to remove ?d=number at all?

I found out that without the reverse proxy of vDDoS this problem does not occur,
i have used a nginx reverse proxy now and it works, the problem is with vDDoS,

😢 I do not use vDDos anymore for this reason.

🤩 I would like to continue to use vDDoS

AzuraCast/AzuraCast#1044

why this is not available for Ubuntu ?
add a package for Ubuntu Please :(
I don't understand , why not Ubuntu ??

also , is there any documentation for compile it from source code ?
and what is vDDoS Auto Add and vDDoS Auto Switch ?

How to Reload configuration only?
Aka: Restart configuration only - nginx -s reload

hihi

Hi

1. I ran cat /vddos/vDDoS_Monitor.txt and tried to access vDDoS Admin Monitor TCP/UDP page but I got ERROR 5XX as below.
   
2. Are these status/ monitoring page are protected against the public?
3. There are 2 links to each Website Status and one of it is 404. Is it normal?

Thank you so much.

Hi,

I want to implement the CDN simply. Is there a more detailed description of the cache, such as disk size, cache time, cache algorithm, etc.

Why does the system add "?d=1" when passing any test? This bug several sites

Which install files are suitable for Ubuntu?

Hello!
Whether new recaptcha invisible, google will be developed further that the user pressed nothing at an entrance the website, would be very conveniently and very securely

How to Uninstall because i have error

I am facing issue that vddos added /?d=numbers(1,2...) on every link like on css js or website. so my website open without css and js.

Is vDDos support IPv6?

Would you happen to have any guides/setup instructions on how to setup a TCP proxy using vddos?

There seems to be a configuration file called tcp-udp-proxy.conf but I'm not exactly sure how to setup/configure it.

Hi

I got a Let's Encrypt SSL for my domain with CloudFlare Strict SSL enabled. Then I got Error 526 after implement vDDOS proxy in front. Is it related to /vddos/ssl/your-domain.com.pri and /vddos/ssl/your-domain.com.crt? I used the values in website.conf Thank you.

I used it in production and I got DDOS just now and It really works against Layer 7 attack. Appreciate your work.

Hi @duy13

I tried 2 methods to whitelist my IP. One is whitelist-botsearch.conf . Second is /vddos/conf.d/cus/dreambox.tw.location.conf. Both are not working. I still got challenged from time to time due to multiple query operation on backend. ( I think that is the reason why I got suspected)

Please Kindly help. Thank you very much.