Http flood problem

I have a problem with http flood. During the attack, the cpu usage reaches up to 100%: |
I tried, but it doesn’t work. In logs I have information about connections limit, but … cpu is still growing.

Is there any method to protect hestia vs l7 (flood) attack?

Usualy, if I have high load issues, I check the web access logs and try to identify the attacker, followed by a firewall ban.

I don’t have any other solution yet, maybe another member can help out. Maybe using cloudflare would also be a solution.

CLoudflare and under attack mode ya, but i have csf firewall with portflood limit / nginx connections limit per ip. The problem persist anyway.