Testing http2

http2 is the latest protocol  everyone is migrating on it due to its reliability and speed. So my client asked me the same to enable it for his server, i had to enable http2 protocol on one of my client’s dedicated server. After enabling it i faced very strange issue that took my couple of hours figuring out the main cause.

I enabled http2 and then tried to access web site with local chrome browser (Version 65.0.3325.181 (Official Build) (64-bit)) it returned http/1.1 all the time in network tab. Then i tried accessing it on my remote desktop server having windows 2012 standard version i saw all the things work fine and in network tab i saw h2 which means it is working.

So i searched on google and came to the conclusion it is either network (ISP), antivirus or firewall which is blocking the access via http2 and reverting back to http/1.1 protocol. Here are 2 URLs to check for http2 support locally and on web server.

Read More

Check active connections to web server – DDOS solution

Here are few commands to check the active connection to apache or to any other web server, you can block IPs having too many connections :

Login to SSH and execute following commands with root access:

1.To see what IPs are connecting to server and how many connections exist from each IP:

netstat -anp |grep 'tcp\|udp' | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n

2.To see how many connections each IP on the server is receiving:

netstat -plan |grep :80 | awk '{print $4}' | cut -d: -f1 | sort | uniq -c | sort -n

3.Get total current active connections to Apache:

netstat -apn | grep :80 | wc -l

Get Apache status update from command line to see which domain is receiving maximum hits (cPanel/WHM server):

lynx http://localhost/whm-server-status

Read More

Get real IP address of visitor for Cloudflare nGinx solution

When you have setup your web sites on cloudflare, every visitor who visits your web site passes through cloudflare network so that his real IP gets changed into cloudflare’s IP address, in short cloudflare acts as proxy server for your web server.
For apache web server, cloudflare has already provided a module which can be installed to get real ip address of visitor.

Here it is :


Well they do not provide any module for nGinx, however it is built in function in nGinx server. You can enable it by adding following below code into your nginx.conf

Follow below steps:

Find nginx.conf file if you do not know the exact location from SSH:

# locate nginx.conf

Add below code in nginx.conf under http section:

real_ip_header     CF-Connecting-IP;

Now save changes and restart your nginx server

service nginx restart

That is all, now you will be able to get real ip address of the visitor.

Comments are welcome.