Layer 7 DoS blocking using BitNinja

Asphyxia

Owner
Administrator
Apr 25, 2015
1,845
2
2,199
327
Get a Vultr server today with $100 free credits: https://www.vultr.com/?ref=8429548-6G

Start your BitNinja free trial now: https://bitninja.io/registration


Want to have your server's traffic scrubbed? Simple with BitNinja!
Code:
Chain INPUT (policy ACCEPT)
target     prot opt source               destination      
HEIMDALL-IN  all  --  anywhere             anywhere             /* Rule added by Bitninja */

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination      

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination      

Chain HEIMDALL-IN (1 references)
target     prot opt source               destination      
BN_WAF_ACCEPT  all  --  anywhere             anywhere             /* Rule added by Bitninja */
HEIMDALL-REDIRECTIONS  all  --  anywhere             anywhere             /* Rule added by Bitninja */
HEIMDALL-PROXY-FILTER  all  --  anywhere             anywhere             /* Rule added by Bitninja */

Chain HEIMDALL-REDIRECTIONS (1 references)
target     prot opt source               destination      
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60412 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60201 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60210 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpts:60211:60250 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60500 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60501 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60502 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60503 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60504 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60505 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60506 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60507 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60508 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60509 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60510 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60511 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60512 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60513 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60514 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60515 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60516 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60517 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60518 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60519 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60520 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60521 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60522 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1025 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1026 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1027 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1028 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1042 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1051 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1054 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1061 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1065 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1071 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1086 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:proofd /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1095 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1100 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1104 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1107 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:kpop /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1110 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:supfiledbg /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1137 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1152 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1243 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1310 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1500 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1521 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1533 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1550 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1688 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1700 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1720 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:cisco-sccp /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:2001 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:2251 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:2910 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3000 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3007 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3052 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3077 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3299 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3322 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3351 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3389 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3700 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3800 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3859 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3870 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3929 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3931 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3941 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3957 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:3998 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:4045 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:4096 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:4125 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:4343 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5000 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5001 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5009 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5011 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5200 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5298 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5414 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:postgresql /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5803 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5903 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5938 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:5989 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6106 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:ircd /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6670 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6711 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6776 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6881 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:6969 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:afs3-fileserver /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:7080 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:7402 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:7443 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8019 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8082 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8193 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8194 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8400 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:8500 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:9009 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:bacula-fd /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:9875 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:9992 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:9999 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:12000 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:12345 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:12346 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:15000 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:16993 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:20002 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:21554 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:22222 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:27000 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:asp /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:29559 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:31337 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:31338 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:44334 /* Rule added by Bitninja */

Chain HEIMDALL-PROXY-FILTER (1 references)
target     prot opt source               destination      
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60416 /* Rule added by Bitninja */
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60417 /* Rule added by Bitninja */

Chain BN_WAF_ACCEPT (1 references)
target     prot opt source               destination      
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:60300 /* Rule added by Bitninja */

Here are pro features for only $10 monthly:
Code:
IP Reputation management
Global defense network
Unified Dashboard
Real-time protection
CAPTCHA/BIC security
WL/BL Management
Weekly security reports
DoS Mitigation
Log Analysis
Antiflood
Malware Detection
SSL Termination
WAF 2.0
Outbound WAF (beta)
Web Honeypots
Port Honeypots

Basic, starts from just $5..
Code:
Global defense network + Worldwide honeyfarm
Unified Dashboard for centralized server management
IP reputation management (Essential/Black/White/Greylists)
CAPTCHA/BIC security on HTTP and SMTP
Additional protection on IMAP, POP3, SSH and FTP
Weekly security reports

Setting this protection up takes just seconds. Please understand this will not magically protect your network from larger-than-pipe attacks. If someone is throwing Layer 7 though, this can possibly prevent malicious loads from even starting by using their large list of blocked IP addresses.

Please ask any questions here.

Explanation of DoS protection by BitNinja:
 
Last edited:

qwerty123

Member
May 13, 2016
28
12
35
BitNinja is literally an extortion scam joke. Just look up bitninja on lowendtalk all the providers ignore BjtNinja emails straight to trash.
 

Asphyxia

Owner
Administrator
Apr 25, 2015
1,845
2
2,199
327
BitNinja is literally an extortion scam joke. Just look up bitninja on lowendtalk all the providers ignore BjtNinja emails straight to trash.
Yeah people sh** on BitNinja because they flag on everything.

if(not_a_browser && request_uri == '/wp-login.php')
\tell::internetz();

They are like a nazi firewall for the web. If you are not all white, leave website (but obviously metaphorical for legit browsers only).. nothing to do with race.

This was just a demo of how to setup their solution, it is fairly cheap for what they provide in the control panel. Is this slightly snake oil? Sure.

But what security product is not overpriced snake oil? Exactly, they all are.

wget, run, done $10

iptables, hmm, documentation, wtf does this mean, shit I broke it, ahh fuck, let me revert, ahhh shit shit shit, okay backup restored, here we go, ahhh fuckkk again $0

Add ELK Stack into the mix and might as well just RIP. CPU spikes, shard storms, and various plugins just to get back to the X-Pack demo..

The problem with security is everything open source tied together is kind of like tying a bunch of spaghetti noodles together. Eventually something is going to slip or break.. whereas full packages whether that is BitNinja, Sucuri, Cloudflare, Imunify360, or whatever else you choose - they just work.
 

Asphyxia

Owner
Administrator
Apr 25, 2015
1,845
2
2,199
327
P.S. why do "they just work"?

Because you have an entire g'damn team of people working on a single security tool or set of tools as opposed to one or two people running a whole security team mixing 10 markets.
 
Top