Quote (nuvo @ Jul 9 2013 06:24am)
There is no such thing as ddos protection software that you run on a server you're trying to protect. ddos protection runs at higher tier network than yours and basically filters the traffic that hits your server - so it's more of a specialized firewall. And most of the time it's specialized hardware ASIC or FPGA designed specifically for this task, since the required computing power is so high for bigger ddos. Those are hardware designed specifically for one task and one task only, and they're many times faster than normal processors.
so basically... do exactly the same thing ddos does?
what you can do is sign up for cloudflare free account and use that. they will protect you from ddos since your server's real ip won't be shown, so no one will know what to ddos, and good luck ddosing cloudflare.
Maybe one more word: some of DDoS attacks rely on your server to respond. That can be actually filtered without problems, there are syn flood attacks etc, and every half decent firewall will easily deal with it. That's not the point: most deadly DDoS attacks will simply fill 100% of your bandwidth for 100% of the time, rendering it impossible to reach for legit people.
this. sort of.
there are ways to pull server ips from behind cloudfare. most of them rely on the hosts inability to properly configure their servers and cloudfare. one of them i discovered a while ago is that most people dont cloudfare their outgoing POP3 data thus resulting in the boxes ip in the email headers.
as for the DDos attacsk rely on your server to respond this is half true and half false. udp attacks do not needs a response, and syn attacks dont either. rather i dont think any attack needs a response from the server, as long as the server processes it there will be a problem (aka filling up all the available bandwidth as mentioned)
how ddos protection works is to have bigger tubes upstream that filters out bad traffic.
bigger tubes as in this one company that offers solutions for banks has 30-60gbps of tubes.
This post was edited by AbDuCt on Jul 9 2013 11:02am