How to stop varnish response when it's got bad request

Per Buer perbu at varnish-software.com
Tue Jun 19 18:26:27 CEST 2012


Hi Nguyen,

On Tue, Jun 19, 2012 at 4:28 PM, Nguyen Thang Long <longvnit at gmail.com>wrote:

>
> I have a problem with botnet, I can detect bad request to my server using
> varnish cache.
>
> **
>
> Currently, I set varnish return error 403 when it’s got bad request, but
> it’s also got more bandwidth to responses (> 200Mbps)****
>
> So, I want to varnish drop bad requests and not response to client.
>

Martin wrote a VMOD that does conn_reset a while back. It is described here:
https://www.varnish-software.com/blog/security-rejecting-offending-connections


-- 
Per Buer
Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer
*Varnish makes websites fly!*
Whitepapers <http://www.varnish-software.com/whitepapers> |
Video<http://www.youtube.com/watch?v=x7t2Sp174eI> |
Twitter <https://twitter.com/varnishsoftware>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20120619/2f7d1a9b/attachment.html>


More information about the varnish-misc mailing list