Audit and protection of VPS (Nginx + PHP-FPM + Cloudflare) from scanning
45 USD VPS with websites on CS-Cart under load due to mass scanning.
High PHP-FPM load is observed (up to 100% CPU), a large number of requests to typical vulnerable paths (.git, .env, phpinfo, and others).
It is necessary to analyze the cause of the load and configure protection at the level of Cloudflare and Nginx without affecting real users and SEO bots.
Detailed technical specifications with a description of the problem and screenshots are here - https://docs.google.com/document/d/1prHSXVUlUUnt25dsy1IbgkFOJI_m_OLIRX2Z-g9-jew/
Client's review of cooperation with Yevgeny T.
Audit and protection of VPS (Nginx + PHP-FPM + Cloudflare) from scanningI am satisfied with the cooperation. Everything is fast, clear, and to the point. I recommend.
Freelancer's review of cooperation with Vladimir P.
Audit and protection of VPS (Nginx + PHP-FPM + Cloudflare) from scanningThank you for your cooperation! I recommend working.
-
30 days111 USD
30 days111 USD
I will implement PHP-FPM pool isolation for each site and configure Cloudflare to block by ASN codes of data centers to cut off bots that imitate real users.
Will you provide direct SSH access to the server for configuring the ngx_http_limit_req_module and setting up automatic banning rules in fail2ban based on 404/403 patterns?
Budget and deadlines will be discussed in private correspondence.
-
1 day223 USD
1 day223 USD
✋ Hello! We are the IT company dZENcode.
We implement comprehensive protection and optimization of server infrastructure (Nginx + PHP-FPM + Cloudflare), aimed at eliminating the load from automated scans, stabilizing the operation of VPS, and maintaining correct indexing by search engines and availability for real users, relying on the experience of the team, best practices, and our own developments.
Do you have access to the complete access/error logs of Nginx and PHP-FPM for the period of load, to accurately identify the sources and patterns of scanning?
Are you currently using Cloudflare Bot Management or just the free Security Rules and Rate Limiting?
You can find detailed information about our services and rates on our website:
Freelancehunt
Take a look – we will discuss the details of the work further, write when you are ready.
…
The final cost is determined only after clarifying the volume and requirements.
___________________
Sincerely,
Manager of dZENcode
Our strengths:
💎 10+ years providing IT services: Outsourcing, Outstaffing
🔥 90+ in-house specialists
🚀 Projects "from scratch" and for support
⚙️ SLA and post-production support
✅ Contract with the company, guaranteed results!
🔥 250+ public reviews since 2015.
-
2 days53 USD
2 days53 USD
👋 Hello! I am ready to start working right now. I clearly understand the task and have successful experience in implementing exactly such projects (examples are in the reviews). I will complete the task quickly and without unnecessary questions. Let's discuss the details and get started! 🚀
-
2 days178 USD
361 2 days178 USD
Hello!
Familiar situation, we will solve this problem "turnkey".
Since we are a European cloud provider and have our own servers in Poland, protecting e-commerce infrastructure and optimizing high loads is our daily expertise.
We are ready to connect and stabilize the operation of your VPS today. I am waiting for you in the chat to discuss the details — and we will immediately start working on the project!
-
3 days33 USD
3301 180 0 3 days33 USD
Good evening.
I am ready to discuss the details of our collaboration. Write to me. Thank you.
-
1 day22 USD
2215 36 0 1 day22 USD
Good evening. I can do it right now. I have been administering Linux servers for over 15 years. Feel free to contact me!
-
2 days178 USD
522 2 1 2 days178 USD
Good day. I was solving a similar issue. Only on the server was WP. I also deal with server configuration, setting up certificates, and other things.
-
2 days89 USD
2163 14 0 1 2 days89 USD
Hello! I am an individual developer with 4 years of experience in system administration and technical optimization of high-load projects, so I can quickly resolve the CPU issue on your VPS and set up multi-level bot protection. Since I currently do not have direct access to external Google documents, I am ready to follow a proven algorithm for CS-Cart: at the Cloudflare level, I will implement WAF rules to block requests to sensitive files (.env, .git, xmlrpc, etc.) and set up Challenge (JS/Managed) for suspicious traffic, and at the Nginx level, I will implement rate limiting and strict access restrictions to service directories to prevent them from reaching PHP-FPM and overloading the processor. My approach allows filtering out junk traffic while maintaining access for real clients and official search bots (Google, Bing) through Verified Bots verification; I work through a sole proprietorship, focused on the stability of your server and ready to review the text of the technical specification (if you send it here) for a final assessment. My works: https://3magency.co/, https://jk-solution.com.ua/, https://farfieworldwide.com/,
Behance.
-
1 day111 USD
242 1 day111 USD
Hello! I am ready to discuss in more detail the tasks and details of the new configurations for this project.
-
4 days100 USD
573 9 0 4 days100 USD
Write in private messages, I will find the problem with the load on the site and eliminate it.
-
2 days33 USD
776 11 2 2 days33 USD
Good day, I will complete your task, I have successful experience in solving similar tasks, for discussion write in op.
-
2 days111 USD
1168 7 0 2 days111 USD
Your problem with high load on PHP-FPM and scanning for vulnerable paths is a typical scenario for VPS servers with websites on CS-Cart. We have already solved similar tasks by configuring protection at the level of Cloudflare and Nginx to reduce server load and block unauthorized requests.
Our SDEV team specializes in optimizing infrastructure and server security. For your case, we will:
1. Conduct an audit of Nginx and Cloudflare configurations to identify the source of the load on PHP-FPM.
2. Set up Cloudflare rules (for example, rate-limiting, firewall rules) to block requests to .git, .env, phpinfo, and other vulnerable paths.
3. Optimize the Nginx configuration for quick responses to users and rejection of "fraudulent" requests.
4. Ensure that SEO bots are not blocked and real users do not experience changes.
An example of our similar case: we created a complex bot for monitoring cars, where it was necessary to ensure protection against scanning and optimize server load.
Current freelance projects in the category PHP
Fix CLSIt is necessary to fix the Cumulative Layout Shift through code PageSpeed does not see this problem, but through Google Chrome, it is visible that there is a layout shift for the desktop version of the page According to Google Search, there is an error regarding the speed of… PHP, Web Programming ∙ 13 hours 29 minutes back ∙ 23 proposals |
Transfer the fully ready adaptive HTML5 structure to WordPress.
267 USD
I am looking for an experienced WordPress developer who can convert our meticulously prepared static HTML5/CSS3 code into a high-performance custom WordPress theme. The frontend is almost ready (about 99%): semantic markup, metadata, and multilingual structure (hreflang) are… Content Management Systems, PHP ∙ 16 hours 22 minutes back ∙ 59 proposals |
GoPos IntegrationHello, has anyone done an integration of GoPos with a custom website for a restaurant in Poland? I need help, their documentation is very sparse, there is only swagger and it lacks descriptions. https://app.gopos.io/doc/swagger-ui/index.html The essence is this: we used their… PHP, Web Programming ∙ 1 day 8 hours back ∙ 24 proposals |
Write meta data for ALT using AIA website on Laravel, the site has many images for which it is necessary to automatically generate correct semantic and relevant ALT descriptions for the images, with the possibility of verification. AI & Machine Learning, PHP ∙ 2 days 5 hours back ∙ 33 proposals |
A developer is needed to complete and integrate a project for automatic data collection and processing.
16 USD
The main part of the parser has already been implemented. The parser works in a Windows environment through Microsoft Edge: the site has anti-bot protection, so data collection is performed not through direct HTTP requests, but through a live browser session. The scripts control… PHP, Web Programming ∙ 2 days 11 hours back ∙ 24 proposals |
Ukraine