hi, i'm currently being ddosed by several thousand people/computers. they are using 3 different methods, ping, udp, and http request spam. i've blocked the http request spam, however there are so many requests that it fills up my server's bandwidth(10MB/s) the requests are also ddosing every other server on my host; i think there are 25 servers in total. here is a list of some of the ipaddresses: http://hotnoob.com/share/ddos_ips.txt every time i ban them, more just keep coming. i've been told that it's "anonymous", but that can't be verified. --- i currently have my server shut down to protect the hardware, but the switchboard can't handle it. any ideas?
i've managed to lower enough of the attack to run the site, but about 1MB/s is still wasting away at my bandwidth. unfortunately, now it's very difficult to determine the difference between the ddosers and the actual users
nevermind there is nothing about hosting company or datacenter, to avoid DDOS attacks u must hire a firewall protection service at the datacenter, and hire a manager for that , it's suggested a CCNA support for that , but this is expensive, the other way , the cheap one it's the use of iptables to block all undesired traffic to your server, OR install a autommated software to block the DDOS and deflate the incomming traffic, but this can increase your CPU ussage , i suggest u use google to search and install a DDOS deflate module and install it at your server , or purchase the firewall service . whatever cover your needs and money u want to spend on it. WBR Eng. Luis Rivera
With a small DDoS attacks you can increase the bandwidth on your server (if it is possible for your server) and filtering traffic on the server with iptables using geolocation, number requests per second, etc. .. In the case of a major attack that clogs your bandwidth or resources to process incoming data, you can use additional servers for pre-filtering.
Sign up for Cloudflare's DNS services, which filters out spam and DDoS. Many high profile websites are going behind Cloudflare. I use it for 2 forums and 2 popular websites. Check it out, it hides your server's IP address and only good traffic goes to your website.
cloudflare motioned carried Who is your host? Ask them for a discount on this months service because they are unable to practice basic security mgmt. A few thousand zombie computers hitting you at once is tough but can be corrected in 5-10 mins. /my 2 cents