Home Miscellaneous DDOS check via number of connections
Miscellaneous

DDOS check via number of connections

by SupportPRO Admin
written by SupportPRO Admin

A quick and usefull command for checking if a server is under ddos is
That will list the IPs taking the most amount of connections to a server. It is important to remember that the ddos is becoming more sophistcated and they are using fewer connections with more attacking ips. If this is the case you will still get low number of connections even while you are under a DDOS.
this MUST be executed in one line via SSH
netstat -anp |grep ‘tcp\|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n
additionally you can check the connection ports here
lsof | grep ESTABLISHED
lsof | grep LISTEN
lsof -p PID

If you require help, contact SupportPRO Server Admin

Server not running properly? Get A FREE Server Checkup By Expert Server Admins - $125 Value

How to Resolve AWS SSM Agent Not Showing...

How to Enable HTTP/3 and QUIC for Faster...

Practical migration roadmap from VMware to AWS 

5 Common Cloud Management Challenges and How to...

How to Troubleshoot “{name} is Not an IMAP4...

AWS Cost Optimization: Proven Strategies to Lower Your...

Application Server and Web Server: The Difference

SmarterMail Troubleshooting: Fixing Delayed, Failed, and Undelivered Emails.

Step-by-step Guide to upgrade Disk Space in Xen...

Resolving the “Import Process Timed Out” Error in...

Leave a Comment

CONTACT US

Sales and Support

Phone: 1-(847) 607-6123
Fax: 1-(847)-620-0626
Sales: sales@supportpro.com
Support: clients@supportpro.com
Skype ID: sales_supportpro

Postal Address

1020 Milwaukee Ave, #245,
Deerfield, IL-60015
USA

©2022  SupportPRO.com. All Rights Reserved

X-twitter Facebook Linkedin Rss