mod_evasive会不会太激进，扼杀好流量?

是的，可以，但取决于配置。您必须确保它已正确配置。有四个主要设置：

DOSPageCount
This is the threshold for the number of requests for the same page (or URI) per page interval. Once the threshold for that interval has been exceeded, the IP address of the client will be added to the blocking list.
DOSSiteCount
This is the threshold for the total number of requests for any object by the same client on the same listener per site interval. Once the threshold for that interval has been exceeded, the IP address of the client will be added to the blocking list.
DOSPageInterval
The interval for the page count threshold; defaults to 1 second intervals.
DOSSiteInterval
The interval for the site count threshold; defaults to 1 second intervals.

最初在我们的服务器上使用它时，我们遇到了与您相同的问题，然后我们检查了日志和访问者活动并进行了设置，现在我们可以说它运行良好。

为了防止DDOS，您可以使用Cloudflare，ns1或capsula服务。Fail2Ban 以及 CSF 和 mod 安全性将增加更多保护。

但是，无论您设置什么，您都必须分析访问者的活动，否则您最终会阻止真正的访问者。