How difficult attacks DDoS/Spoofing

Quote:

---

Originally Posted by Enough

Understand. Well, so donations from my server are released by the company I will be doing buying something and see if it actually avoids some problems I've been having.

Meanwhile, I'm using the D-Guard to monitor my UDP connections. Has anyone here ever used this program?

---

I have used it, it works, but it has just one problem, it is limited to the maximum capability of the I/O hardware you are running it, generally it handle (in real numbers, 200~300kpps, sometimes it shows more, but it is not a real number), also it is not good against syn floods at this level (200~300kpps) having a lot of false positives.

It works good for small attacks, but once people figure you have some defence against such attacks, they will just increase their power until the software fails, the other limiting is that the datacenter you are, might not like you dealing with such high packet rates, since it takes cpu power, from their switches.

Exact. I had a similar problem a while ago, I received some attacks and my server was down, when I contacted the company she said that my server was blocked by maintaining a transfer rate higher than that permitted for more than 24hrs, was outraged.

Will any of these software versions paid, would withstand more attacks than in their free version?

Quote:

---

Originally Posted by Enough

Exact. I had a similar problem a while ago, I received some attacks and my server was down, when I contacted the company she said that my server was blocked by maintaining a transfer rate higher than that permitted for more than 24hrs, was outraged.

Will any of these software versions paid, would withstand more attacks than in their free version?

---

Pointless when the attack is saturating your server its uplink port.

Monitor this port to the program would not be a solution?

Quote:

---

Originally Posted by Enough

Monitor this port to the program would not be a solution?

---

Nope it wouldn't, there is no cheap way to cope up with attacks... maybe you can believe there is a way, but once you try many of them, you find out there isn't, if someone want to really make you go down, you will be down, no matter what.

Quote:

---

Originally Posted by MaxZeus

Nope it wouldn't, there is no cheap way to cope up with attacks... maybe you can believe there is a way, but once you try many of them, you find out there isn't, if someone want to really make you go down, you will be down, no matter what.

---

Really worried about the future of my server. For when donations do not cover a system DDoS protection that does not cost less than $ 300 and for what seems to me, you and Dave claim not exist as spreads or at least contain such attacks only software and 'tricks'.

DDos Protection doesn't go hand and hand with cheap. If you need ddos protection is going to be a min $200 added onto your monthly bill.

Software ddos protection is only used to stop the packets from hitting the software.

I do believe that a good software firewall can stop attacks and large. With a good firewall configuration, limiting some inbound connections to TCP, UDP, ICMP, for example, could be a traffic control and with preventing these packets/connections from reaching the server.

Quote:

---

Originally Posted by Enough

I do believe that a good software firewall can stop attacks and large. With a good firewall configuration, limiting some inbound connections to TCP, UDP, ICMP, for example, could be a traffic control and with preventing these packets/connections from reaching the server.

---

I stopped reading at I do believe.

If you're not going to listen to the people here who have much more experience than you and spout the same crap for 3 pages you don't deserve their help. A software firewall won't do shit. No firewall can/will stop an attack. Your configuration won't mean shit when your server is being overloaded with data.

Quote:

---

Originally Posted by Killer1478

I stopped reading at I do believe.

If you're not going to listen to the people here who have much more experience than you and spout the same crap for 3 pages you don't deserve their help. A software firewall won't do shit. No firewall can/will stop an attack. Your configuration won't mean shit when your server is being overloaded with data.

---

Should have stopped reading and gone here since your comment does not add anything to the topic.

Did not say I would not hear, so I asked Dave the details of which plan to hire, for when I'm in a position, to make the purchase. Please, if you want to help, feel free to reply this topic, otherwise I do not go to the word.

1st) You need to elect a company with good reputation in the market, there aren't many, I would be able to speak about 4 right now :

- BlackLotus
- Dragonara
- HyperFilter
- Staminus

These 4 companies, have their own structure and are not reselling any services, so they are recommended because they know what they are doing on the market.

However, you'll need to experience with each of the companies in order to find the one which is best suitable for you.

Not sure how about the Gunz server works exactly, however, there are companies which are aimed, towards providing services focused in games while there are other companies focused more on the general scenario, the main difference on this, is how their protection system works.

Some of the systems might cause disconnects when an attack start and when it stop (if this is not critical for you, then almost any of the 4 companies will work good), other systems will not cause 'any' downtime when an attack start, and won't increase the latency (these services are more expensive), there is also the compatibility regarding the protection technology and your software, this is another key factor that must be considered.

Another thing for you know, none of these companies, use software solutions, everything is done through hardware, basically :

Routers, Switches, IDS (Intrusion Detection Systems), Mitigators and Firewalls...

Why ? Because these special built hardwares, can deal with a high packet rate without degrading the clean traffic... a simple server can't do it, no matter what you try to do, the kernel is slow, the thread synchronization is slow, the context switching between the threads are slower, these special build hardwares, do not have 'any of this', it is built for raw performance and this is why, good services also requires you to pay a 'certain amount' per month...

The cheap solutions you find, generally are just a 'user' of one of these companies, sharing his own package with other customers.

It might be risk because, if the service of this specific customer fail, all the customers sharing the services are down, also once one of his customers are attacked, you will be 'sharing it', meaning you can get affected in the process and so on, so obviously a lower price, represents a higher risk, there is 'no miracle'.

Most ddos protection services are normally huge networks that migrate and spread the attack across over many cloud servers. Software is literally the end point, real ddos protection stops the attack before it hits the end point (the server). Its impossible for software firewalls to stop / migrate packets from reaching the server.

That being said, most hosts will nullify your servers ip until the attack is over (meaning no one will have access to the server). As well as most hosts have a 3 strike policy, after 3 ddos attacks on your server they will cancel your hosting.

Don't waste your time with software firewalls, they are only used for stopping packets from reaching other services running on the server.

I appreciate all the attention and responses by all! One more question, which TCP and UDP I can protect if DDoS protection has limited ports?

Quote:

---

Originally Posted by Enough

I appreciate all the attention and responses by all! One more question, which TCP and UDP I can protect if DDoS protection has limited ports?

---

Again it all depends with which company will you work with, some does limit ports, others not :).