SitePoint Sponsor

User Tag List

Results 1 to 11 of 11
  1. #1
    SitePoint Evangelist Fergal's Avatar
    Join Date
    Nov 2003
    Location
    Ireland
    Posts
    500
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)

    How to defend a site against a DDOS attack?

    I know of a website that had some downtime because it was on an IP which was the target of an extremely large distributed denial of service attack (5gbit+). How can website owners defend themselves against DDOS attacks?

    Thanks!
    Last edited by Fergal; Aug 28, 2012 at 00:52. Reason: Typo
    Fergal Crawley (Previous Username: Proudirish.com)
    Business Advice Forum - Webmaster and Business Forum
    < Get a free link & win $5,000
    Forum Coin New World Currency

  2. #2
    SitePoint Enthusiast
    Join Date
    Dec 2007
    Posts
    36
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    There's many services. One that may work for smaller attacks is CloudFlare, for bigger attacks, provides such as Blacklotus specialize in DDoS filtering.
    Comcure does independent, off-site website backups just for the webmaster
    Full API. Daily Snapshots. Backup via FTP, FTP over TLS or SFTP.
    Storage Pods in USA, Europe and Asia to come. Backup to the closest one.

  3. #3
    SitePoint Evangelist Fergal's Avatar
    Join Date
    Nov 2003
    Location
    Ireland
    Posts
    500
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Thanks for those links snickn, will have a good look at CloudFlare. BlackLotus looks great, but as you say it is probably for much larger attacks on higher profile sites.
    Fergal Crawley (Previous Username: Proudirish.com)
    Business Advice Forum - Webmaster and Business Forum
    < Get a free link & win $5,000
    Forum Coin New World Currency

  4. #4
    SitePoint Evangelist Fergal's Avatar
    Join Date
    Nov 2003
    Location
    Ireland
    Posts
    500
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Update - I've signed up to CloudFlare, using their free service to start with. Hopefully this will help. Thanks again snickn.
    Fergal Crawley (Previous Username: Proudirish.com)
    Business Advice Forum - Webmaster and Business Forum
    < Get a free link & win $5,000
    Forum Coin New World Currency

  5. #5
    SitePoint Member
    Join Date
    Aug 2011
    Posts
    24
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by Proudirish.com View Post
    Update - I've signed up to CloudFlare, using their free service to start with. Hopefully this will help. Thanks again snickn.
    Try turning on I'm Under Attack if you're having an attack using CloudFlare.

  6. #6
    SitePoint Addict kduv's Avatar
    Join Date
    May 2012
    Location
    Atlanta, GA
    Posts
    244
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    The best solution for distributed attacks is a hardware firewall, but that requires extra equipment and it can be expensive.

  7. #7
    SitePoint Evangelist Fergal's Avatar
    Join Date
    Nov 2003
    Location
    Ireland
    Posts
    500
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Thanks Damon, good to meet you here on SP.

    Thanks for the suggestion kduv, that's not an option for the moment, but something to consider as the sites grow.
    Fergal Crawley (Previous Username: Proudirish.com)
    Business Advice Forum - Webmaster and Business Forum
    < Get a free link & win $5,000
    Forum Coin New World Currency

  8. #8
    . shoooo... silver trophy logic_earth's Avatar
    Join Date
    Oct 2005
    Location
    CA
    Posts
    9,013
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    A hardware firewall is not expensive, take any old computer doesn't need to be super powerful, a netbook type of computer would be enough, it only needs two ethernet ports. Install one of the many free firewall solutions, SmoothWall for example.
    Logic without the fatal effects.
    All code snippets are licensed under WTFPL.


  9. #9
    SitePoint Addict kduv's Avatar
    Join Date
    May 2012
    Location
    Atlanta, GA
    Posts
    244
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    But if your server is hosted in a datacenter, then at the very least you'll have to pay co-location fees, then you'll want to have spare parts on hand in case of any hardware failure, etc. If you're hosting your own server out of your garage or something, sure that can be a quick and effective way to implement one.

  10. #10
    SitePoint Author silver trophybronze trophy
    wwb_99's Avatar
    Join Date
    May 2003
    Location
    Washington, DC
    Posts
    10,649
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)
    Fair point. Then again, the old m0n0wall sitting next to me is running on a 15 year old desktop. Actually more efficent -- slower old stuff runs cooler, no need for active cooling and a ~140 watt power supply. Waiting on the power supply to die in a blaze of glory, but you can run most of those firewall distros off a floppy/cd or usb storage so you don't need to keep a hard drive spinning.

  11. #11
    Non-Member
    Join Date
    Sep 2012
    Location
    Sweden
    Posts
    35
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Consult with your hosting provider (if your site is hosted with some company) they must have industry standard protection available.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •