I recently read that certain industries—including the one I work in—are more likely than others to be targeted by a DDoS attack. Can you give me some tips on how to prevent DDoS attacks?
Asked
Active
Viewed 1,012 times
1
-
See http://serverfault.com/questions/531941/i-am-under-ddos-what-can-i-do – Pacerier Dec 07 '14 at 17:32
2 Answers
2
Prevent? No. If someone wants to try attacking you, they'll do so.
It's possible to mitigate with a combination of tactics (protection services like CloudFlare, engineering in things like rate limiting, etc.), but not to prevent.
ceejayoz
- 32,469
- 7
- 81
- 105
-
1
-
4Actually it is an answer. It is technocally not possible to block the incomine traffic of a DDOS attack, as the OP says. – TomTom May 17 '14 at 15:23
-
4
0
Buy hardware firewalls and bigger pipes. You can mitigate the attacks that way. Lots of businesses like SolidShellSecurity and Staminus Coms for example offer that protection on a need-to-use basis.
In most cases, 10GBs worth of protection will protect you from the majority of attacks.
You can also have your upstream block UDP ports to prevent common UDP floods from coming in. But you can't very well block an attack till you know what kind.
You could also harden your local server from small attacks but in the end, you need a data center or upstream provider who will and can help you drop and block attacks.
Jason
- 3,821
- 17
- 65
- 106
-
1This is a good guide on how to *mitigate* attacks. The question, though, was about how to prevent them, which is impossible. – EEAA May 17 '14 at 16:04