How to prevent XenForo against DDoS attacks

[USY]

Hello community,

i need advise how to secure (prevent) XenForo (and Server) again DDoS Attacks like GET, POST request floods and other Layer 7 and Layer 4 attacks.
I have currently running ConfigServer Security & Firewall - csf v14.04 on my Webserver with cPanel. Also also find out that on a DDoS Attacks with GET, POST Cloudflare also doesn't protect the website.

I am grateful for any help and advise.

Thanks

 

[Max Taxable]

Have a talk with @MySiteGuy

 

[Ntown]

Watching. Would also be interested in what can be done past CSF and Cloudflare usage.

 

[Mouth]

i need advise how to secure (prevent) XenForo (and Server) again DDoS Attacks like GET, POST request floods and other Layer 7 and Layer 4 attacks.

Layer 4 prevention would be your hosting provider - what protection do they offer, if any?
For layer 7, do you have rate limiting active within CSF?
Running fail2ban on your server is good assistance for your firewall, it could halt probes that often lead to attacks.
The next option will be which webserver you're running, whether you have it's rate limiting measures active.

 

[Ntown]

Cloudlare Rate Limiting is now unlimited (1 rule per FREE account).

How should I use my one rule?