Configure Mod Evasive

45 minutes
  • 4 Learning Objectives

About this Hands-on Lab

The goal of this lab is to configure the `mod_evasive` module for the Apache Web Server. First, we install and load `mod_evasive`. Its installation includes a default configuration file with values we can modify. One thing to configure is how many times a person can reload our site until they are denied. The conditions of the lab include the following.

* firewalld is already running.
* SSH is port 61613 which we need to connect to the server.
* Apache is running on port 80.
* Port 80 is already open.
* SELinux is in enforcing mode.
* The front end and back end are both up and running.
* The back end is running on port 65535.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Install `mod_evasive`
sudo yum install mod_evasive
Inform Apache of the New Module
sudo vim /etc/httpd/conf/httpd.conf

Make sure conf.d/*.conf is included.

Go to /etc/httpd/conf.d/`` and make sure we have the configuration file formod_evasive` and that it has a LoadModule directive.

Reduce `DOSSiteCount`
sudo vim /etc/httpd/conf.d/mod_evasive.conf

Change the value of DOSSiteCount from 50 to 30.

Save and close

Test the Configuration

Open your browser and navigate to http://Server_IP/index.html.

Refresh the site often in quick succession and confirm the block.

Additional Resources

The initial SSH Port is 61613, and that's the port we use to initially connect to the server via SSH.

Web servers are subject to DOS and DDOS attacks. Sometimes if the attackers have sufficient bandwidth, there's very little to nothing we can do to stop them. Most of the time, we are capable of implementing a set of countermeasures which will be used in a proactive way to prevent DOS attacks, DDOS attacks, and web scraping. For this purpose, we install and load mod_evasive. It's capable of determining how many times within a predefined time interval the site can be accessed, how many times a specific URI be accessed within a given time interval, and much more.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?