Posted: Tue Jul 03, 2012 17:45 Post subject: Outside sources are killing my business
I can't tell if its a SQL injection or a DDOS but it's been 2 weeks straight of no access for clients, to my webpage.
I started with a Linksys WRT310v2(broadcom SOC). The support for it was weak at best but I was able to run my company on it for a few years...until I put up a FORUM and was directly hit by a DDOS.
I try to upgrade from my 3 year old firmware and there was no update and in the process I bricked it. So out to walmart to buy a 30 USD Linksys E900 (100base T only) at least to get it up and running.
Get DD-WRT on it, write the firewall script to curb the massive amounts of traffic coming in and purchase the ASUS BLACK KNIGHT N66U (dual chip) and wait for it to arrive using the E900 until then.
E900, even though it has 64k cfe is bogged, running at 100% all the time, killing the web interface 50% of the time. I don't know the SSH context well enough to edit the firewall script (if there even is one) within the CLI so the only way one can actually configure anything is to disconnect the WAN port.
Even with the firewall running, the internet pages don't load because the router can't keep up. Active connections shows 8100 out of 8146. When limiting connections to 4096 4030ish are there.
No biggie, onto the ASUS dual core dd-wrt'd N66U. Hook it up, xfer the firewall script and it has only 32kb of cfe.
Okay, ASUS @ 600mhz, cisco cheapy at @ 300mhz, this should fly...eh eh wrong. It's a million times worse. SLOW SLOW SLOW, no connection to the web interface EVER. at least on the E900 I can eventually get it to come up.
OH I am not ripping on DD-WRT, so please don't read it as that. I don't think the hardware is the problem. I get even worse results on the ASUS N66U which has plenty of HP to stop it, but instead it's worse than the E900 on DD-WRT (both N66U and E900 running DD-WRT).
THe point is, what am I doing wrong? What is the right path while still maintaining DD-WRT firmware?