vDDoS Proxy Protection

 Welcome to vDDoS, a HTTP(S) DDoS Protection Reverse Proxy.

• Homepage: http://vddos.voduy.com
• Discussion/Community: https://groups.google.com/g/voduydotcom
• Github: https://github.com/duy13/vDDoS-Protection
• SourceForge: https://sourceforge.net/projects/vddos-protection
• Youtube Playlist: https://link.voduy.com/vddos-youtube
• Thanks to Nginx, Inc: https://github.com/nginx/nginx
• Thanks to Alibaba/Tengine: https://github.com/alibaba/tengine
• Thanks to Kyprizel testcookie: https://github.com/kyprizel/testcookie-nginx-module
• Thanks to NBS System naxsi: https://github.com/nbs-system/naxsi

System Requirement

• CentOS/CloudLinux/AlmaLinux/RockyLinux/RedHat:
  

  yum -y install epel-release ; yum -y install wget zip unzip tar curl  && \
  yum -y install nano net-tools curl wget gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel perl-ExtUtils-Embed  && \
  yum -y install screen htop iotop iptraf nano net-tools gcc automake libffi-devel zlib zlib-devel gcc gcc-c++ autoconf apr-util-devel gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel  perl-ExtUtils-Embed && \
  yum -y install gnutls-utils sshpass rsync && \
  yum -y install bind-utils sysstat bc tar curl wget gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel perl-ExtUtils-Embed gcc automake autoconf apr-util-devel gc gcc gcc-c++ pcre-devel zlib-devel make wget openssl openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel gperftools gperftools-devel perl-ExtUtils-Embed perl perl-devel perl-ExtUtils-Embed libxslt libxslt-devel libxml2 libxml2-devel gd gd-devel GeoIP GeoIP-devel gperftools-devel wget yum-utils make gcc openssl-devel bzip2-devel libffi-devel zlib-devel screen htop iotop iptraf nano net-tools gcc automake libffi-devel zlib zlib-devel gcc gcc-c++ autoconf apr-util-devel gc 

• Ubuntu/Debian:
  

  apt update; apt -y install wget zip unzip tar curl ca-certificates && \
  apt install -y perl libperl-dev libgd3 libgd-dev libgeoip1 libgeoip-dev geoip-bin libxml2 libxml2-dev libxslt1.1 libxslt1-dev  && \
  apt-get -y install build-essential libpcre3 libpcre3-dev zlib1g zlib1g-dev libssl-dev libgd-dev libxml2 libxml2-dev uuid-dev  && \
  apt -y install curl wget build-essential checkinstall   && \
  apt -y install net-tools sshpass rsync sysstat bc dnsutils  && \
  apt -y install libncursesw5-dev libssl-dev libsqlite3-dev tk-dev libgdbm-dev libc6-dev libbz2-dev libffi-dev zlib1g-dev

  
  
• (CentOS 7 need install this following package too, if you use it):
  

  yum -y install libatomic_ops-devel 

• (Ubuntu need install this following package too, if you use it):
  

  apt -y install libreadline-gplv2-dev

Install

Install vDDoS Proxy Protection Latest Version:

wget https://files.voduy.com/vDDoS-Proxy-Protection/latest.sh ; chmod 700 latest.sh ; bash latest.sh

OR:

latest_version=2.3.3
wget https://files.voduy.com/vDDoS-Proxy-Protection/vddos-$latest_version.tar.gz
tar xvf vddos-$latest_version.tar.gz
chmod 700 *.sh
./install.sh

 1. MASTER
 2. SLAVE
 3. REMOVE ALL

 0. Exit

________________________________________________________
Enter your choice [1, 2, 3 or 0]: 

OR:

./install.sh master #(master/slave)

Using

Example Edit website.conf:

# nano /vddos/conf.d/website.conf

# Website       Listen               Backend                  Cache Security SSL-Prikey   SSL-CRTkey
default         http://0.0.0.0:80    http://127.0.0.1:8080    no    200      no           no
your-domain.com http://0.0.0.0:80    http://127.0.0.1:8080    no    200      no           no
default         https://0.0.0.0:443  https://127.0.0.1:8443   no    307      /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt
your-domain.com https://0.0.0.0:443  https://127.0.0.1:8443   no    307      /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt
your-domain.com https://0.0.0.0:4343 https://103.28.249.200:443 yes click    /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt

Save config website.conf

Restart vDDoS:

vddos restart

Explain Config:

nano /vddos/conf.d/website.conf

Website:

variable: default, your-domain.com, www.your-domain.com

Sets domain name listen. Note: only one default on one port listen Example:

# Website       Listen               Backend                  Cache Security SSL-Prikey   SSL-CRTkey
default         http://0.0.0.0:80    http://127.0.0.1:8080    no    200      no           no
default         https://0.0.0.0:443  https://127.0.0.1:8443   no    200      /vddos/ssl/your-domain.com.pri /vddos/ssl/your-domain.com.crt

Listen:

variable: http://0.0.0.0:80, https://0.0.0.0:443, http://123.234.012.321:80, https://[::]:443

Sets IP & Port listen.

Backend:

variable: http://123.234.012.321:80, https://123.234.012.321:443, http://127.0.0.1:8080, https://[::1]:8443

Sets Real IP & Port Backend Service.

Cache:

variable: no, yes

Sets proxy cache website on vDDoS.

Security:

variable: no, 307, 200, click, 5s, high, captcha, hcaptcha

Sets a valid for Security Level Protection. Note: no < 307 < 200 < click < 5s < high < captcha < hcaptcha

  SSL-Prikey:

variable: /location/ssl/key/of/your/private/key/privkey.pem

Sets SSL Private key website for vDDoS. Note: Option need for HTTPS Listen.

   SSL-CRTkey:

variable: /location/ssl/key/of/your/public/key/cert.pem

Sets SSL Public key website for vDDoS. Note: Option need for HTTPS Listen.

3rd Plugin:

vddos-sensor-plugin: https://github.com/ertugrulturan/vddos-sensor-plugin

Refer - https://vddos.voduy.com/