DDoS Protection services

Hi,

We have suffered a couple of serious Syn Flood attacks recently.  We thought we had put the right levels of protection on our server, but we are now seriously considering using a web based service (see list below).

What should we look out for with these services?

What should we expect to pay for the services?

Does anyone have any particular recommendations?

cloudflare.com
dosarrest.com
rivalhost.com
prolexic.com
incapsula.com

Many thanks
chris
Chris_RyanAsked:
Who is Participating?
 
Rich RumbleConnect With a Mentor Security SamuraiCommented:
You have to work with the ISP's to mitigate some of these large DDOS attacks, you can't do it yourself with hardware. If the pipe fills up, your RST packet's can't get through, and if they are redirected+amplified, you may cause harm to other networks. CloudFlare and others work with the ISP's, they don't have any magic other than that:
http://blog.cloudflare.com/the-ddos-that-knocked-spamhaus-offline-and-ho
You can't mitigate todays attacks of this magnitude without a special service, hardware doesn't cut it anymore.
-rich
0
 
Tony GiangrecoCommented:
hardware based firewall, it is probably being logged. I suggest reviewing those logs. I also suggest having those logs sent to a system admin by email as the log fills up so they can be reviewed anytime. Without sending those logs, the old logged events get  over written as new logs are created.

We use a Sonicwall firewall for this. It works very well. Cisco and other brands should work well also.

You might also try contacting your ISP, although most of the time, adding a firewall is the best first step.

Hope this helps.
0
 
Blue Street TechLast KnightCommented:
How many users are in you protecting? What do you have in place currently?
0
 
Chris_RyanAuthor Commented:
Hi Diverseit

We have six major domains and hundreds of sub-domains.

We have CSF in place with iptables

Thanks
Chris
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.