Ddos Protection

[cyberoptik]

Anyone know of a good way to shield a server from a ddos attack? I know theres some software apps out there, do you guys have any you could vouge for?

Ron

 

[phpwiz]

i have 3 servers and the best thing i have used is APF Firewall, and i use netstat to see who is ddossing and ban the IP through apf. i looked into floodguard but they do hardware not software

 

[mappaiyo]

As far as i know, DoS and DDoS attack is the most hard to handle. From my experience, i'm using ISA Server as firewall.
But if you had more money, maybe u can try cisco, as they have their own method at their router modules to handle this type of attack.

 

[Xafor]

APF is really no good at fighting dDos'es (it is conveniant for brute force attacks though). The problem with dDos is, that it saturates the uplink (not with a 40 Mbps, but that is not what causes the problems).

The only thing you can do, is avoid any risk factors and communicate with your isp, so they can blackhole/nullroute the problem.