anantgupta
Active Member
Go with iweb.com . These people can provide you real DDos protection.
I guess only these people can help you out.
I guess only these people can help you out.
Server + DDOS + SHIT Host = Cluster Fuck
- Thread starter EvilGenius
- Start date
- Status
Lots of stuff here you need to keep in mind.
1) Having a 1gigE port is not the solution. If the DDoS is killing your current server, it won't take much to fuck the 1gigE port either. You need real DDoS protection and mitigation.
2) Before I tell you about DDoS protection; yes and no, your KVM may or may not help. Depending on the DDoS, your server may or may not be reachable at all (via KVM or otherwise).
3) Real DDoS protection is not cheap. It's quite expensive. The offer posted by the now banned ProMovies was real. Here's a few places I know that offer real/solid DDoS protection:
http://www.blacklotus.net/
http://dragonara.net/dedicated-servers.html
http://www.serverorigin.com/ (this one I tried personally, quite effective but expensive too)
1) Having a 1gigE port is not the solution. If the DDoS is killing your current server, it won't take much to fuck the 1gigE port either. You need real DDoS protection and mitigation.
2) Before I tell you about DDoS protection; yes and no, your KVM may or may not help. Depending on the DDoS, your server may or may not be reachable at all (via KVM or otherwise).
3) Real DDoS protection is not cheap. It's quite expensive. The offer posted by the now banned ProMovies was real. Here's a few places I know that offer real/solid DDoS protection:
http://www.blacklotus.net/
http://dragonara.net/dedicated-servers.html
http://www.serverorigin.com/ (this one I tried personally, quite effective but expensive too)
EvilGenius
Active Member
LT & Sunhank008
Thank you for your very informative and valuable contributions.
I am planning on still using a reverse proxy, since that leaves me with room to have my www/data safe incase of a attack, I get emails from mysql and notify users even with a downed site, or bring it up elsewhere if needed.
So, Will a smaller server.. say a Dual Core/ Core2Duo be sufficient?
Thank you for your very informative and valuable contributions.
I am planning on still using a reverse proxy, since that leaves me with room to have my www/data safe incase of a attack, I get emails from mysql and notify users even with a downed site, or bring it up elsewhere if needed.
So, Will a smaller server.. say a Dual Core/ Core2Duo be sufficient?
bhanuprasad1981
Active Member
try contacting gigenet.com , also a suggestion you can even try litespeed web server instead of apache 
hope i am helpful.
hope i am helpful.
EvilGenius
Active Member
bhan, the server under attack is a nginx rev. pxy
Lmfao, 2gbit takes care of a ddos? Are you kidding me? I can push this power with 2 servers allready. A serious ddos (not some kid) will be at least 11 to 15 gbit. Ive seen alot bigger networks on the web. We've been attacked once by a guy with 2500+ server-class bots means all 100mbit and 1gbit.
Try following.
1) Get a 1gbps port
2) let nginx run on some good quadcore with enough ram
3) install a hardware firewall that gives throughput of 500mbps+
check if the attack is incoming flood with 100mbps+ b/w, then above steps can be good for u.if its like 2,3,..... gbits attack, u need a real ddos protection service as mentioned by others. but it gonna cost around 1500-3000$ for higher b/w attacks
1) Get a 1gbps port
2) let nginx run on some good quadcore with enough ram
3) install a hardware firewall that gives throughput of 500mbps+
check if the attack is incoming flood with 100mbps+ b/w, then above steps can be good for u.if its like 2,3,..... gbits attack, u need a real ddos protection service as mentioned by others. but it gonna cost around 1500-3000$ for higher b/w attacks
bhanuprasad1981
Active Member
please check this :-
Code:
http://blog.litespeedtech.com/2011/01/05/litespeed-beats-nginx-apache-over-ddos-attack/just get a free 2 cpu license which is valid for 14 days and have a try , if attack eases a bit you can try multi core license
EvilGenius
Active Member
yea dude.. I don't think a lighty can help with a Gbps scale ass whopping.
well
well in my opinion n my experience says... no1 ddos servers for no reason.. and some times what eva server u buy u get ddos.. all depends on packet power.. so better not to mess wid such people. try to settle down things. and stay away from them. and keep doing gud work..
well in my opinion n my experience says... no1 ddos servers for no reason.. and some times what eva server u buy u get ddos.. all depends on packet power.. so better not to mess wid such people. try to settle down things. and stay away from them. and keep doing gud work..
damoncloudflare
Active Member
Hi,
Just a quick note that CloudFlare isn't a full DDoS solution (we can only help mitigate attacks, and your attack sounds fairly large).
One thing you could do, however, is ban IPs in your threat control panel and/or block by country. If you block by country if the attack is largely coming from one area, all visitors from that region would get a challenge page & this could reduce some of that load (wouldn't hit your server w/o passing a captcha).
Good luck working with your host to stop the attack.
Just a quick note that CloudFlare isn't a full DDoS solution (we can only help mitigate attacks, and your attack sounds fairly large).
One thing you could do, however, is ban IPs in your threat control panel and/or block by country. If you block by country if the attack is largely coming from one area, all visitors from that region would get a challenge page & this could reduce some of that load (wouldn't hit your server w/o passing a captcha).
Good luck working with your host to stop the attack.
EvilGenius
Active Member
@groogz: You need to now one thing about me, I AM NOT A PUSSY! You Hit me, I hit you back in my own way!
@damoncloudflare: Do you mean an IP/country in the block list have to pass a captcha?
or just passed over?
@damoncloudflare: Do you mean an IP/country in the block list have to pass a captcha?
or just passed over?
@evilgenius btw i didnt hit u.. and 2ndly pls behave like an adult if ur not then pretend to be the one.. ok!! m just tryin to tell u what actualy happens mostly...
jst go to ur cpanel look at ips.... and u can trace the attackers ips and botnets or if u knw the person pm me his details..
jst go to ur cpanel look at ips.... and u can trace the attackers ips and botnets or if u knw the person pm me his details..
damoncloudflare
Active Member
"Do you mean an IP/country in the block list have to pass a captcha?
or just passed over?"
Yes, they would have to pass a captcha, which bots won't really be able to do. If you're using CloudFlare, then simply add a "block" entry for that country in your threat control panel.
Note: IP data changes rapidly & blocking by country isn't 100%. You can also use rules in .htacess to block specific countries from accessing your site.
or just passed over?"
Yes, they would have to pass a captcha, which bots won't really be able to do. If you're using CloudFlare, then simply add a "block" entry for that country in your threat control panel.
Note: IP data changes rapidly & blocking by country isn't 100%. You can also use rules in .htacess to block specific countries from accessing your site.
- Status