The website is DDoS What should I do if the attack server black hole is blocked?
I think many of the webmasters who do websites have experienced it, and they are things that they are very unwilling to encounter. Once attacked, most small websites can only be slaughtered by others, and the server will be affected. DDoS After the attack, whether it is Tencent Cloud, Alibaba Cloud, etc., it will activate a black hole to block the server and prohibit all access requests. I guess those who have suffered attacks have a deep understanding!Today, the blogger will share with you an emergency plan after the black hole. If you use it well, let DDoS The attack becomes completely meaningless and is being DDoS After the attack server black hole is blocked, the normal access of the site can be quickly restored. If it can be done in advance, it can even be restored in seconds!
Let’s first take a look at what black hole strategy is, taking Alibaba Cloud as an example:
When Alibaba Cloud Public Network IP Assets suffered heavy traffic DDoS The peak bandwidth of attack and attack traffic ( bps) More than assets DDoS When defensive, to avoid DDoS Attacks cause greater damage to assets while also avoiding single IP quilt DDoS The attack affects the normal operation of other assets on the network, and the Alibaba Cloud black hole strategy will be temporarily blocked IP The Internet entry traffic of assets.
We can know that the cloud server can only be unable to accept access requests after being black holes, which is the so-calledInternet inbound trafficAfter being blocked, many webmasters were basically at a loss at this time and thought that the server had been completely blocked.
In fact, this is not the case. Bloggers can still pass after actually measuring black holes on domestic and foreign servers on Alibaba Cloud and Tencent Cloud. SSH If you connect to the server remotely, it is considered SSH Most of the reasons for connection failure are SSH It's not configured or not enabled. At this time, we can still use cloud servers Web Backstage VNC Log in to the server, Alibaba Cloud and Tencent Cloud Server VNC The location of the login server is shown in the figure below:
General use VNC The main purpose of logging into the server is to enable it SSH Remote login, after all Web Page VNC The login experience is really bad, use it XShell This type of professional SSH Remotely connecting to the client is enjoyable.Only need to modify after logging in/etc/ssh/sshd_config
this SSH In the configuration filePort
The port can be opened SSH Remotely connected (default only needs to be removed Port Save the previous # number and exit it).After the modification is completed, it should be as follows:
Port 22 #AddressFamily any #ListenAddress 0.0.0.0 #ListenAddress ::
Meaning SSH The remote connection port is 22, preferablyiptables/firewalld This type Linux The kernel firewall also opens this port 22. After all, most pagoda environments are enabled by default, but there are exceptions for everything, which is more safe.

The above is the "website shared by Suyou Network and everyone DDoS What should I do if the attack server black hole is blocked?", Thank you very much for your patience to finish this article. We will provide you with more information on reference, use or learning and communication.We can also provide you with:Enterprise website construction, website imitation, website copying, imitation site, foreign trade website construction, foreign trade website construction, company official website productionFor services, our company serves customers with the service concept of "integrity, professionalism, pragmatism and innovation".If you need cooperation, please scan the code to consult, and we will serve you sincerely.
TAG Label: