Recently a project I'm working on has come under heavy DDOS attacks. Cloudflare is not enough to stop it. It seems to be a UDP/TCP type ddos attack but thats all the information I have. All online support seems to suggest is "invest in more dense network that has the bandwidth to withstand it". What say you?
It currently only has 1 website on the server. Not sure what you mean by exposed. Can you elaborate please?
They're really getting past Cloudflare? wow! @digitalpoint - is there a setting in Cloudflare that might not be right?
If they are attacking your server IPs directly, I'd change your IPs and also block all traffic to your servers except CloudFlare IPs. I'd say it would be very difficult for someone to DDoS attack your servers through CloudFlare, so I'm guessing they know your direct IPs.
This may be an application level attack if it's orangeclouded, and still getting past. Can you post some of /var/log/messages or apache access log to Pastebin?
Have you thought of using Hiawatha instead of Apache? (Assuming you're using Apache in the first place)
Everything seems to be set up correctly. Changing IP's seems to have worked. Haven't gotten an attack yet. I don't have those logs any more unfortunately, but it was basically a lot of connection time outs, sockets temporarily unavailable etc.. No it's dedicated. 4GB ram. Dedicated processors and other hardware, etc.. Seems to have fixed it, thanks. Nope, nGinx all the way!