script to block legit http flood

anybody here can create a script to block legit (real) http flood ?
right now I had ppl to manually do
netstat -apn|grep :80|awk '{print $5}'|sort |more

and put the IP in iptables deny / apf deny

is there a script out there, that will automatically do this kind of job ?

basically if the result of
netstat -apn|grep :80|awk '{print $5}'|sort |more
show IP with more than 50 connection will be banned

 

 

 

 

Top