[Review]Anti DDos?

[TEOGR_hItMaKeR]

Guys i was in my modem and then i find this

 

Ps Try it :)

[ExCaLiBuR®]

[gr]

lol cyta exeis?

gt kai egw cyta exw alla den exei kati tetoio

telos pantwn

eides ean ontos einai anti ddos protection?

pes kanenan na se kanei ddos attack gia na doume

ean douleuei

[TEOGR_hItMaKeR]

[GR] οχι ον τελεκομς εχω και Pirelli modem δεν εχω τιποτα να τρεχει απο τον υπολογιστη μου .. αν και μπορω να ανοιξω counter strike server αλλα ποιος θα μου κανει attack?

[ExCaLiBuR®]

[GR] οχι ον τελεκομς εχω και Pirelli modem δεν εχω τιποτα να τρεχει απο τον υπολογιστη μου .. αν και μπορω να ανοιξω counter strike server αλλα ποιος θα μου κανει attack?

[gr]

bres kapoion pou na kserei apo ddos attack

[Virusgr]

Ενδιαφέρον και πολύ μάλιστα.Μόνο που δεν το βρίσκω στο δικό μου Pirelli.Ποιά firmware version έχει το δικό σου?

[JoeDaFlow]

DDOS Protection my ass.

Firstly, let me clarify what a DDOS attack means in simply English.

DDOS means, you're getting millions of packets, from a load of different IPs.

 

 

Firstly, no firewall can save you from getting DDOSed, just forget this case.

Why's that, firstly, firewalls are very low in the network hierarchy. Which means, you can get your connection hurt, much before into getting the software.

 

A good DDOS attack, usually exceeds 3 Gps, which means ~your home upload connection * 3000.

In this case, if you have a software firewall, it'll try to migrate good from bad packets, which means your CPU must migrate millions of packets. Just do not fool your self, your CPU won't migrate even 1% of these attacks. So your CPU will get an over-flow, so you'll just get your machine "out of work", which means you'll get a downtime.

About Linux firewalls, they'll just do better the job, cause Linux OS are faster and lighter.

 

That's why your software firewall is totally useless.

 

Now, what firewalls do.

Basically, imagine Firewall software like a police man. Firewall, checks good from bad protection.

If an IP tries to send a bad packet, firewall adds it to the "black-list". If the packet's sender, is on the "black-list", firewall rejects it without even checking it, so you save some CPU cycles this way, if the attacker, sends you many packets, firewall won't able even to inspect them, so you'll get the same result.

 

 

Regarding hardware protection, yeah, hardware -protection-.

Routers, will work the way your firewall would, just that routers are dedicated in doing this job, your router, will work like a CPU that will filter the incoming packets. By the time, it works this way, it can be brought down this way too. Believe me, routers that your ISP provides you won't be strong enough.

 

 

So let's see what can we do:

 

---

 

Well, we can pay.

We can pay a good datacenter with a decent computing-validity router, that will protect us from such DDOS attacks. And this is the best choice, for sure. I'll explain why.

 

Case 1

 

I'll name the first case migration.

Have you can see a diagram.

 

 

So, all the packets get filtered from the basic router of the datacenter, and they allow only clear packets to get into the inner network.

 

E.g: If for example, if a lot of packets come to IP of PC 7, a DDOS attack, router has to migrate it all, so all the rest of the machines have no probs with their connections. So it's just impossible you getting a DDOS attack cause others will have problems too.

 

 

Case 2

 

I'll name the second case hardware-protection.

The diagram is the following.

 

 

So, they just give you a router in front of your server, and then it's up to the router.

If router can handle the attack, then you're protected, if not you're down.

 

E.g: If PC 2 gets a DDOS attack, firewall will just let all the incoming traffic get into, and then your firewall has to fight them.

 

 

 

Another way, is to "hide" your real IP.

Some datacenters, offer a network mask, which will hide your IP.

You just leave your servers just unprotected, state the IP that the company gave to you. The client will send the packets to their server(s), they will send them to you back filtered. Basically, it's the same thing, just it's getting done "remotely".

There are limits there too, if the attack exceeds some Gps, they'll let the packets flow to your server.

 

 

So comparing case Migration with case Hardware-protection, Migration wins.

So, where can I find such datacenters? Hm, I've been good enough today.