How to use Worldshield.ws control panel Print

  • layer7, ddos, attacks, flood
  • 2

Worldshield.ws is the DDoS mitigation control panel that JavaPipe provides for you to manage your DDoS protected proxies.

Once you receive the login details and login in worldshield.ws platform, click on Manage to start the configuration of your service.
Below is an explanation of each module. 

  1. Backend IP and port
  2. Manage SSL Certificates
  3. Block User Agent
  4. Block Referrer
  5. Allowed HTTP Methods
  6. Deny URLs
  7. Deny HTTP Protocols
  8. GEO IP Blocking
  9. Activate in house WAF
  10. Web security challenge
  11. Most requests per IP
  12. Advanced Filters
  13. Username connecting from multiple IPs
  14. Search in proxy logs and Live access logs

1. Backend IP and port. On the backend IP module, you need to add the server we will be protecting and the specific ports. The port to port option, will forward traffic on your website from eg. yourwebsite.com:8080 to your backend_ip:8080

2. Manage SSL Certificates. First, add your domain here, then click on edit and add the Certificate + CA Certificate and the SSL Key each in its specific box then click on Update. If you do not have a SSL certificate contact us and we will generate one for free. This option will be added later on the panel.

3. Block User Agent. On this module, you can block any user agents that you do not need to access your service. You can check the user agent in logs in the "Search in proxy logs" or "Live Access logs" modules.
Example of user agent: Mozilla/5.0 (QtEmbedded; U; Linux; C) AppleWebKit/533.3 (KHTML, like Gecko) MAG200 stbapp ver: 4 rev: 1549 Mobile Safari/533.3

4. Block Referrer. On this module, you can block the domain that sends traffic to your website. Eg. google.com, yahoo.com, bing.com and so on.

5. Allowed HTTP Methods. Are the methods to be accepted on your service.

6. Deny URLs. On this module, you can block any URL on your website that is or can be used for DDoS attacks. Eg. /client/assets/img/, this will not blacklist the IP that is loading this URL but only block this request.

7. Deny HTTP Protocols. On this module, you can disable http1.0 or http2.0 if one of them is not needed.

8. GEO IP Blocking. On this module, you can block any countries that you wish to not access your service. If your website servers only the visitors of a specific country, its recommended to block the rest.

9. Activate in house WAF. This module will protect against SQL injections and other common HTTP attacks like Cross-site Scripting (XSS).

10. Web security challenge.  This feature will verify that an IP that accesses your service is a real visitor or a bot. You can enable Javascript Challenge or Click to Pass. Javascript Challenge will do a transparent redirect in order to fender off possible bots, and the Click to Pass option will add a new layer of security that requires your visitor to click on it in order to get the desired webpage.
On the URL Location exception box, you can add the URLs where the Web Security Challenge should not apply.

11. Most requests per IP. You can limit the requests per IP. For instance, an IP can request your page only 100 times per hour. If the number of requests goes above 100, the IP will be blacklisted.

12. Advanced Filters. On the advanced filters module, you can set a more complex way to block invalid requests. You can enter block time (the period the IP address remains blocked), How many requests - in the Matches box, and the interval of time these requests are counted - in Time to Match.
Eg below, will check and block more than 2 requests in 10 seconds interval for 3600 seconds. That load the URL: "GET /unmetered-vps.php HTTP"

13. Username connecting from multiple IPs. This module will show the username and from which IPs it is connecting. You can block the username or the IPs.

14. Search in proxy logs and Live access logs. You will be able to check out the proxy logs from worldshield.ws

If you have any questions or need any help, feel free to always contact us.

 

 


Was this answer helpful?

« Back