Knowledgebase

Combating iDDoS/DDoS

Posted by xtremeservices, 08-02-2013, 12:32 PM
Hi All, I have a 100Mb connection to my Shared Hosting services and would like to make sure I cross all my Ts and dot all my Is now before we bump up to 1Gb. What iDDoS/DDoS protection service providers or methods do you weathered network admins recommend? I am currently looking at using pfsense with Snort or Untangle with attack blocker via Transparent Bridge. Thx in advance, ~Jeremy
Posted by VPSBarn, 08-02-2013, 06:41 PM
I used pfsense as a personal home firewall for some time and found its not all that "Big and Bad" as everyone says. I personally recommend Astaro Gateway. They to me offer the best protection all around from virus scanning to port blocking and ip blocking. It took me hours to be able to unblock particular apps and services through the firewall although this may be time comsuming it goes to show that Astaro Gateway has your system "Locked Down". I would say give it a try! Good luck if you have any questions with it send me a PM!
Posted by BestServerSupport, 08-03-2013, 11:44 AM
asset gateway is also a very good option to protect your shared server against DDoS attacks.
Posted by ddosguru, 08-03-2013, 12:28 PM
What is iDDoS?
Posted by GetDedicated, 08-03-2013, 12:40 PM
Apples new brand! LOL
Posted by Infinitnet, 08-03-2013, 12:42 PM
It was Job's latest invention. Apparently it's just a booter/stresser service (iddos.net), so either reflected UDP or HTTP flood. On topic: I would recommend a *BSD box (pfSense should do) for the network layer and in case you want to protect HTTP as well, either a HAProxy or NGINX setup that you can put infront of affected sites.
Posted by whmcsguru, 08-03-2013, 03:11 PM
Truth be told, you can't block a true DDOS at the server level. You need a network level firewall appliance to handle this. CSF/LFD can help you (kind of) deflect this kind of an attack, but a true DDOS will require something like a network firewall, even going as far as cloudflare
Posted by xtremeservices, 08-03-2013, 03:39 PM
Thx for the input guys. With pfsense do you mainly run the snort package to help with DDoS and DoS mitigation? iDDoS I thought stood for intelligent DDoS which is not a standard botnet but orchestrated by an intelligent person from the command and control system. But, apparently it isn't an acronym so forgive my ignorance. Do any of you have any experience with Rackspace's cloud load balancer or cloudflare pro service to achieve DDoS protection as a service? Many thx.


Was this answer helpful?

Add to Favourites Add to Favourites

Print this Article Print this Article
Also Read
UK Based Windows Reseller Hosting - Help! (Views: 548)
Anyone with problems getting to your ev1 servers? (Views: 648)
Logwatch showing too many "attempts using mod_proxy" (Views: 613)
NocPrice.com! Never more! (Views: 574)
Namecheap Reseller hosting (Views: 579)


Language:

Client Menu

 

Client Login

Email

Password

Remember Me

Search



  
 

Clients

Hosting

VPS Hosting

About Us

Contact Us

Copyright © 2015 DC International LLC in partnership with Bragin IT Solutions Inc. - All Rights Reserved.