- Aug 2, 2010
- IG Faction
Ok, I asked a friend I have "How do you stop a DDos", He replied to me with this (Not sure if this is any help but it might be so I gave a shot at posting it):
Basically there are 3 levels to stop a DDOS attack. At site level it's the weakest but if you're shared host you have no choice. htaccess is the main method here. At server level you'll need a kernel based firewall. One that allows for fast dropping of packets that are denied or don't pass your ruleset. You'll need to really get to know your firewall and begin the process of fine-tuning a ruleset. Also this is a useless prevention method if the attack is above your pipe. If you're on a 10mbps port and the attack is 12mbps there is nothing server level you can do. At router level you'll need to pretty much rely on your host. Some hosts will do nothing and some hosts have built in DDOS protection based on PPS (packets per second). Some hosts will even simply null route you to protect the datacenter if indeed you're being DDOS attacked.