Our DDOS protection and how we keep your server safe
Our network has the capability to protect your servers from DDOS attacks. The network will automatically monitor all traffic to and from your server constantly looking for signs of illegitimate traffic. Once an attack is detected our DDOS protection will automatically kick in. When mitigation is activated our routers will route your traffic through four protocols to filter out the “bad” traffic. We can handle up to
1000 GBPS 2000 GBPS of bad data sent to your server, preventing it from going offline and even slowing down.
The best way to describe our system is by using a simple image showing you the network design (excuse the terrible drawing skills). Here you can see the traffic enters the network and hits the first router which is monitoring the data to your server. The router then routes the traffic to mitigation for cleaning. At this point, we send you an email telling you your server has been placed into mitigation.
In protocol one, the following is completed, any traffic that does not pass protocol one is routed to a void (null route)
- Authorization of TCP, UDP, ICMP, protocols
- All other protocols are blocked
In protocol two the following is then completed, any traffic that does not pass protocol two is routed to a void (null route)
- Allow/deny an IP or a subnet
- Allow/deny a protocol:
- IP (all protocols)
- Allow/deny a port or TCP/UDP port interval
- Allow/deny SYN/TCPs
- Allow/deny all packets except SYN/TCP
In protocol three the following is then completed, any traffic that does not pass protocol three is routed to a void (null route)
- Check for malformed IP header
- Check IP checksum
- Check Incorrect UDP
- Check to see if the UDP datagram is Incorrectly fragmented
- Check DNS amp
Finally protocol four will;
- Check malformed IP header
- Check fragment
- Check IP checksum
- Check for duplicated fragment
- See if IP/TCP/UDP/ICMP packet too long
- Check TCP/UDP checksum
- Check for Invalid TCP flags
- DNS authentication
Any traffic that has passed all four protocols will be allowed to reach your server and no bad traffic will ever reach you, keeping you and your infrastructure safe from a DDOS attack. Mitigation is automatic and free on any vps server or dedicated server, in any location on our network. Your server will be brought out of mitigation automatically once the attack has been faltered, we will also email you to tell you the server is now out of mitigation.
How was this article?