I saw many threads on other forums about DDoS Attack but they were general only or with no replies. My question is: How can I get protected for DDoS Attacks? I will like to know more of how DDoS Attack works in order to protect myself, anyone here that can help me slove my issue? I did tried wikipedia but didn't figured out... Thank you!
Generally speaking, DDoS attack mitigation is done at the data center end, they can install special hardware or some merely just do null route and let the DDoS wave is over. Null Route basically is sort of like taking your IP address out of the router so that it cannot be found. That's is the cheapest way of doing it. Alternatively, they can install special hardware from Tipping Point http://www.tippingpoint.com/ and Arbor Peakflow http://www.arbornetworks.com/peakflowsp . However, it depends on the level of attack and the bandwidth the datacenter has, such hardware can only do so much.
From what I understand, any software counter measures would need to address every single attack coming in and with the load generated from DDoS, it would probably overwhelmed the server. At the same time, DDoS would generate incoming traffic which would 'jam' up the network port. The best policy would be to mitigate DDoS attack before it even reaches your server thus your server would not be overly taxed in terms of CPU and Bandwidth resource.