If, however, the user wishes to setup set up their own anti-DDoS system there are a number of open source tools that can help.

Is a suite of tools that evolves from the original fail2ban to offer a range of functionality. The core elements are a fast banning system, Banjax/Swabber, which is plugged into the Apache Traffic Server(ATS) proxy system. A machine learning tool, learn2ban, which is capable of identifying malicious botnet requesters based on pre-built models of attacks. And finally, Challenger, which offers the ability to respond to botnet, or suspected botnet, requests with either a Javascript Challenge challenge or a by serving a Captcha captcha page to determine the legitimacy of the request.

Is a regex based banning tool that is extremely effective against DOS DoS and Brute brute force attacks. It is used in conjunction with IPTables to ban malicious requests that match its defined regexsregular expressions. It can be found [http://www.fail2ban.org/wiki/index.php/Main_Page| here]. fail2ban's default configuration enables it to block attackers attempting to brute force username and password combinations to the SSH service. If a server's SSH port is exposed to the open internet, then it is strongly advised that fail2ban or a similar tool be installed.

Against, Brute Force Password brute force password attacks fail2ban is an extremely useful tool. It can be set to ban IP Address that repeatedly attempt to access certain website pages, such as the login or admin pages.