New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
His argumentative nature and ”always being right” triggers people
He seems like a really good dude, but it also seems overly easy for him to make enemies
A proof for yesterday's upgrade, in case if someone has doubts:
nice.
also when bigger ddos happens what do you do? still travel everytime 100km to fix that?
I agree with you, I will probably never buy a service from florin, but I wish him success. We need to stick up for the little guys
All what I can say is that in-house filters remain in-house filters.
First, I will have to make sure that I have the remote backups so that I can restore any critical customer service, even if in a different location, with a different IP.
By the end of the year, I must definitely reach 10Gbps considering that this offers both a kind of DDoS protection and increased customer satisfaction.
you can make 10Gbit ddos easy these days so thats not any kind of protection but well its also costly so could kinda works... wish you luck!
Your "in-house filters" did nothing, you require sufficient bandwidth/transit capacity to be able to filter/tank DDoS Attacks larger than your current capacity, 3Gbps can be generated from spinning up a few VMs without amplification.
At the very least, look into BGP communities, both of your transit providers should provide a RTBH community, to nullroute /32 at their edge, which providing it's not a carpet bombing attack, you can keep the majority of your infrastructure online while handling the attack. "DDoS Protection" vs. "DDoS Mitigation".
You should investigate fastnetmon, as it can detect DDoS Attacks, which can then trigger the RTBH on the IP address being attacked.
It's really quite frustrating how much everyone is offering sound advice, and you're seemingly dismissing it. Best of luck.
He does not dismiss it. The problem is that he maybe in theory is familiar what is DDoS, but in practice he lacks knowledge to adapt to the situation.
If this incident was only a test (skids love to poke before really attacking) - he is in a lot of trouble. Also, he has no hardware or fat enough network pipe to cope with volumetric attacks.
Total network failure is programmed if no swift decisions are made:
@FlorinMarian do decisive actions now. Right now. Prepare for the next wave as it will definitely hit you again. Good luck to you mate!
everything is fine no worries
Or just don't host your WHMCS with the client stuff
I mean, a 2 GB Hetzner instance will do, right? If behind Cloudflare of course
So is it fixed or no? i saw it online now off again
I’m waiting for Netflix to pick this up
I picked hazi because of daily backups, I figured if something happens then at least no data loss.
Will you provide us the ability to access our data? I cannot reliably connect to ssh and download my data.
Absolutelly. Talk to @xrz , he's the one who's more capable to stop this at this moment.
oh me and my magic lol.
ddos stop, and it wont stop right, wish i could, but then no popcorn time, why dont you take this as a challenge and finally accept the truth that you need real anti ddos?
Outside of boredom or [random unexpected distraction] this is highly likely (and from what it seems has already started). To the kids doing this it's amusement after all and giving your target time to breath and a false sense of security simply adds to that amusement. It's sadly very predictable.
he should use real anti ddos protection from day one, no matter the cost i think, this is so unnaceptable
The website has been successfully migrated to OVH, at least it should no longer suffer from the lack of protection.
Well, i can see how skipping the costs during startup is tempting and as long as it works it works, i guess but there should have been at least some kind of backup plan as one can't really expect to never get hit at all. It's not like DDoS is some super exotic and rare event after all.
Send him hdd and 60€ for fuel (100km drive to home) and another 50€ to send your data back.
Very funny captcha on hazi.ro - I had doubts I was a robot but the site has finally confirmed them
well... he didn't ask for any help. he has too much pride.
@FlorinMarian seems to think he is cheap and therefore anything goes...I have checked your prices, some better structured providers are as cheap as, if not cheaper than, you.
This is why no matter how much I root for you, using you makes no financial sense for me.
Stop thinking you can do as you wish cause you are cheap(er), YOU ARE NOT
LowEndStatus
@FlorinMarian As a provider, it is your responsibility to ensure that the services offered actually work. Of course, this also includes a functioning network connection and, in my opinion, the price of your services is of no interest.
If it is necessary to zero-route the IPs of individual customers due to attacks, that is perfectly fine, but as a hoster, it is not acceptable for all customers to go down due to a DDoS (Of course that can happen... Bad things happen. But then you should really do EVERYTHING to get it under control as quickly as possible. Regardless of the costs involved).
Just my personal opinion!
4GB plan IPv4+IPv6 comparison:
Bro is cheaper than Scaleway.
Doc, I think what the poster was referring to was that there are other providers in similar region that is cheaper than him, but you're the doc so I could be wrong.
BroHost (RO): 2x E5-2680v4, 120GB SSD, unmetered on 1Gbps port shared by hundreds of customers, €67.44/year (active offer).
Lmao shared buy hundreds why on earth would anyone bother knowing that. Anyway the price of some of them you might as well pay a little more and get a small kimsufi which is dedicated, or if not get a instance from hetzner you will get way better speeds.
Also the way i see some of you speak about customers like they don't matter is very bad, i am glad at least florin is not speaking that way, what has happened to his DC could happen to any small start up, hay i lost servers on ovh years back when they was new too, but at least he is trying to sort something out, there is always gonna be a ass who wants to mess up your business, but hopefully frorin learns from this.
Me myself as a customer say you should for now move your clients effected to ovh until you sort some kind of ddos protection out as this person will do it again knowing how much crap they cause.
I'm sorry, but your message clearly shows what others don't want to understand either.
You have a DDoS attack with IP spoofing on multiple protocols and the attacks target all subnets and IPs that you announce from a certain location. Who do you give nullroute to?
People understand that. He just said that doing so is OK if it's necessary but being generally unavailable is not.