our websit was attacked yesterday.
now DDOS attack is still a very serious problem for us
is there anybody can give me some suggestions about DDOS defense?
thank you
Printable View
our websit was attacked yesterday.
now DDOS attack is still a very serious problem for us
is there anybody can give me some suggestions about DDOS defense?
thank you
If you have the money, you can buy a Firewall that will fend off DDOS attacks. Most firewalls have the ability to stop small attacks but large attacks (50Mbps or greater) require a heavy duty DDOS guard. I've seen attacks before that spike @ 900Mbps directed at one computer, but this computer had some cisco firewalls in front of it that was able to null route that IP that the attack was coming from after a few minutes.
Usually you can use Firewalls along with a IDS system to detect if a protocol is being used for a attack.
what size of a DDOS attack was it?
Also is this website hosted on your business data line, or do you have it hosted somewhere?
Is your attack distributed? Spoofed Ip addresses? Random packet size?
PuRe
cheyenne1212,thank you for your answers.
yes we have a firewall along with an IDC system,but still have no use.
this website was hosed on another server ,so business sites goes well.
two hours ago ,we change our server's IP adress.NOW that website is run well.
but if another DDOS attack happened,it will be a disaster.
another DDOS attack happened three hours ago,what can we do?
perhaps wait until the TCP/IP protol is corrected
08:10 to 08:14 (pm & pm) and suddenly "another DDOS attack happened three hours ago", that quite a feat 3 hours in 4 minutes, or did you just notice that you had been DDoSed 3 hours ago....NOW?
Quote:
posted Today 08:10 PM
(post #4)
cheyenne1212,thank you for your answers.
yes we have a firewall along with an IDC system,but still have no use.
this website was hosed on another server ,so business sites goes well.
two hours ago ,we change our server's IP adress.NOW that website is run well.
but if another DDOS attack happened,it will be a disaster.
posted Today 08:14 PM
(post #5)
another DDOS attack happened three hours ago,what can we do?
perhaps wait until the TCP/IP protol is corrected
yes ,attack never stoped until now
our website cant open
Quote:
Originally posted here by chgzkitty
cheyenne1212,thank you for your answers.
yes we have a firewall along with an IDC system,but still have no use.
this website was hosed on another server ,so business sites goes well.
two hours ago ,we change our server's IP adress.NOW that website is run well.
but if another DDOS attack happened,it will be a disaster.
sorry,this message should be post yesterday evening,15 hours ago
Why not Null route the IP's the attack is coming from in essence "Black Holing" it on your border firewalls.
It might make sense to contact your ISP and have them block the attack upstream. This is probably the most sensible thing to do if the DDoS is huge (i.e. coming from a hell of a lot of IP's). Otherwise, null routing is the next best thing to do.
Cheers,
cgkanchi