DOS Attacks...

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • powvex
    Member
    • Mar 2004
    • 67
    #1

    DOS Attacks...

    I have a question: What is the firewall configuration on Dathorn servers?
    Are they setup with FloodGuard? or Pix Firewalls? or what ?

    Cause I will see a DOS attack on xx server that will down the server, why? dont they have firewalls? or problem is something else?
    Tags: None
    • Buddha
      Senior Member
      • Mar 2004
      • 825
      #2
      Doubt if you going to get any specifics. AFAIK, all the servers have firewalls which is all I need to know.

      Every DDOS is different so some fine tuning is necessary. Also this is a shared hosting environment that host sites from all over the world so blocking all European IP addresses may not be an option here. Unlike say at American E-commerce server where they don't do internation orders.

      I think my server is under attack but the customer hasn't noticed. Being proactive I emailed him and his comment was, "what the hell you talking about...it's fine? Fast as always." Thank you Andrew.
      "Whatcha mean I shouldn't be rude to my clients?! If you want polite then there will be a substantial fee increase." - Buddha

        Comment

        • AndrewT
          Administrator
          • Mar 2004
          • 3655
          #3
          The attacks that we generally see are of such a large magnitude that it's not just something that can be blocked. You never hear about any of the smaller ones that are easily stopped as they don't cause any problems. But when you start to get well above 20Mbps of traffic thrown at a server, it just can't handle it and any piece of equipment that you throw at it is just going to get overloaded since most of the time the sources are entirely spoofed anyways.

            Comment

            • powvex
              Member
              • Mar 2004
              • 67
              #4
              Cant something like Pix firewall come in handy and block the 20Mb flood?

                Comment

                • AndrewT
                  Administrator
                  • Mar 2004
                  • 3655
                  #5
                  Originally posted by powvex
                  Cant something like Pix firewall come in handy and block the 20Mb flood?
                  No, this isn't a magical process where just plugging in a device solves everything. The variations of DDoS attacks are unlimited and if you factor in the problem that most are spoofed anyways, no one thing is just going to be the end all of DDoS attack protection.

                  PIX firewalls such as the ones that The Planet offers are useless in any real DDoS attack.

                    Comment

                    Previous template Next
                    Working...