Impact analysis of SYN flood DDOS attack on HAPROXY and NLB cluster-base web servers

In recent, the high available internet service is main demand of the most people. However, online services occasionally become inaccessible due to various threats and attacks. Synchronization (SYN) flood Distributed Denial of Service (DDoS) is the most used and has a serious effect on the public network services. Hence, the outcome of this attack on the commonly utilized cluster-based web servers is systematically illustrated in this paper. Moreover, performance of Internet Information Service 10.0 (IIS 10.0) on Windows server 2016 and Apache 2 on Linux Ubuntu 16.04 server is evaluated efficiently. The performance measuring process is done on both Network Load Balancing (NLB) and High Available Proxy (HAProxy) in Windows and Linux environments respectively as methods for web server load balancing.  Furthermore, stability, efficiency and responsiveness of the web servers are depended as the study evaluation metrics. Additionally, average CPU usage and throughput of the both mechanisms are measured in the proposed system. The results show that the IIS 10.0 cluster-based web servers are more responsiveness, efficiency and stable with and without SYN flood DDoS attack. Also, the performance of IIS 10.0 web server is better than of the Apache 2 in term of the average CPU usage and throughput.

[1]  Fatwa Ramdani,et al.  Performance testing analysis on web application: Study case student admission web system , 2017, 2017 International Conference on Sustainable Information Engineering and Technology (SIET).

[2]  José Emmanuel Cruz de la Cruz,et al.  Design of a high availability system with HAProxy and domain name service for web services , 2017, 2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON).

[3]  Bülent Sankur,et al.  An intelligent cyber security system against DDoS attacks in SIP networks , 2018, Comput. Networks.

[4]  Subhi R. M. Zeebaree,et al.  LOD Explorer: Presenting the Web of Data , 2018 .

[5]  Qingyang Wang,et al.  Performance Comparison of Web Servers with Different Architectures: A Case Study Using High Concurrency Workload , 2015, 2015 Third IEEE Workshop on Hot Topics in Web Systems and Technologies (HotWeb).

[6]  Seifedine Kadry,et al.  A new framework to alleviate DDoS vulnerabilities in cloud computing , 2019 .

[7]  Karwan Jacksi,et al.  Design and Implementation of E-Campus Ontology with a Hybrid Software Engineering Methodology , 2019, Science Journal of University of Zakho.

[8]  Avinash Goud Chekkilla Monitoring and Analysis of CPU Utilization, Disk Throughput and Latency in servers running Cassandra database : An Experimental Investigation , 2017 .

[9]  S. Ramachandram,et al.  A survey on client side and server side approaches to secure web applications , 2017, 2017 International conference of Electronics, Communication and Aerospace Technology (ICECA).

[10]  Pedro López,et al.  Teaching high-performance service in a cluster computing course , 2018, J. Parallel Distributed Comput..

[11]  Subhi R. M. Zeebaree,et al.  Impact Analysis of HTTP and SYN Flood DDoS Attacks on Apache 2 and IIS 10.0 Web Servers , 2018, 2018 International Conference on Advanced Science and Engineering (ICOASE).

[12]  Karwan Jacksi,et al.  Distributed Cloud Computing and Distributed Parallel Computing: A Review , 2018, 2018 International Conference on Advanced Science and Engineering (ICOASE).

[13]  Endroyono,et al.  The impact analysis and mitigation of DDoS attack on local government electronic procurement service (LPSE) , 2016, 2016 International Seminar on Intelligent Technology and Its Applications (ISITIA).

[14]  Mohammed A. Saifullah,et al.  Scalable load balancing using enhanced server health monitoring and adimission control , 2015, 2015 IEEE International Conference on Engineering and Technology (ICETECH).

[15]  Karwan Jacksi,et al.  Development History Of The World Wide Web , 2019 .

[16]  Subhi R. M. Zeebaree,et al.  Security Approaches For Integrated Enterprise Systems Performance: A Review , 2019 .

[17]  Tulshi Bezboruah,et al.  Performance Evaluation of Hierarchical SOAP Based Web Service in Load Balancing Cluster-Based and Non-Cluster-Based Web Server , 2015, Int. J. Inf. Retr. Res..

[18]  Kiattikul Treseangrat,et al.  Analysis of UDP DDoS flood cyber attack and defense mechanisms on Web Server with Linux Ubuntu 13 , 2015, 2015 International Conference on Communications, Signal Processing, and their Applications (ICCSPA'15).

[19]  Kiattikul Treseangrat Performance analysis of defense mechanisms against UDP flood attacks , 2014 .

[20]  Nazife Baykal,et al.  DDoS Attack Modeling and Detection Using SMO , 2017, 2017 16th IEEE International Conference on Machine Learning and Applications (ICMLA).

[21]  B. Prabadevi,et al.  A Review on Various Sniffing Attacks and its Mitigation Techniques , 2018 .

[22]  Subhi R. M. Zeebaree,et al.  Application Layer Distributed Denial of Service Attacks Defense Techniques : A review , 2018 .

[23]  Ioana Apostol,et al.  Analyzing websites protection mechanisms against DDoS attacks , 2017, 2017 9th International Conference on Electronics, Computers and Artificial Intelligence (ECAI).

[24]  Abhinav Bhandari,et al.  Simulation study of application layer DDoS attack , 2015, 2015 International Conference on Green Computing and Internet of Things (ICGCIoT).

[25]  Subhi R. M. Zeebaree,et al.  A State Of Art Survey For Web Server Performance Measurement And Load Balancing Mechanisms , 2019 .

[26]  Sudhir T. Bagade,et al.  DoS attack mitigation using rule based and anomaly based techniques in software defined networking , 2017, 2017 International Conference on Inventive Computing and Informatics (ICICI).

[27]  Silvia Bravo,et al.  Systematic review of aspects of DDoS attacks detection , 2019, Indonesian Journal of Electrical Engineering and Computer Science.

[28]  Mehul Nalin Vora,et al.  Estimating Effective Web Server Response Time , 2017, 2017 Second International Conference on Information Systems Engineering (ICISE).