New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
why even add that challenge when there are other methods of attacks that do not rely or interact with port 80/443 ?
@FlorinMarian I'm sad - adding 10g x 2 as many have said is not going to work if the DDoS is higher than that. Is the problem that you cannot afford DDoS protection even if it's 100EUR a month and thats why you haven't gone this route?
Let me explain this more simply - you can't expect a dialup modem (56k) to handle a 1 Gbit DDoS attack even if you put a linux box to filter out the bad traffic.
Positive points for getting your site back up but it's time to keep it up with some more good decisions
Well, in general for protecting web apps it's not wrong, i guess. In theory it's pretty much what Recaptcha does after all, just that Recaptcha's challenge tries pretty hard to fool AI (all those grainy and blurred images). If i remember correctly Recaptcha also has a lot of problems in regards to being solvable by AI but it's still probably more complicated than matching a couple of symbols.
I understand your point of view perfectly.
The decision is already made. I will continue to offer the same services and in parallel I will focus on an alternative solution, such as a layer2 with Voxility.
I don't want additional latency, so I exclude solutions like Path.net both because of the price, latency and costs that can appear through the significant consumption of monthly traffic.
My plan is to increase my traffic capacity by bringing in new clients and implicitly offering as many benefits as possible.
As many have said, in Romania we do not have a capable infrastructure for "real" production, nor have we ever assumed this. The difference between us and many other providers is that we recognize this.
how? hooooow? what u said? if i was your client i would never come back after this lol and you want new?
double the downtime or tripple? for free:D
Somehow calin manages to avoid such type of ddos (at least for now).
Thanks for the response, fair enough, I don't fully understand what you said since I have little knowledge of Romania except that media reports the sisters as exceptionally beautiful but if I understood you correctly that you are looking into some sort of better DDoS solution, then I wish you the best of luck!
You want to increase bandwidth to the point where you can tank DDoS, do i understand that correctly?
One day you'll realise that not everyone need/expect/buy only what you would.
no, i only buy servers with real anti-ddos you clown
The main goal will be to increase the quality of services, the DDoS is a secondary effect.
I have already understood that I cannot do much with the current infrastructure from this point of view, but I will forward the price requests for Layer2 to the Voxility DC.
Hmm.
I don't really get that. Does this mean you are looking into getting connectivity from Voxility are you planning to let them filter your traffic?
Recognize what? That you have a non-guarateed internet line that is oversaturated?
What other providers? Voxility, Orange, RCS?
Do they brag about having hundreds of Gbps and you don't?
That's because they are actual providers and you are a wannabe that knows shit without GPT.
So deadpool and come back under new name in few months
Not just him but anyone.
If you still have free time, start looking at the peering of other providers and you would be surprised to see how many of them only peer with regular ISPs from the point of view of antiddos security.
The type of attack we were facing is not at all common.
Unguaranteed bandwidth and BGP session is just a wet dream, and you know it.
>
I was talking about the providers on the LET, not about the ISP.
I don't think you know me well enough to have a pertinent opinion, but good luck, what can I say.
Will orange boot you out? How much TB per month you have on contract? If attack will hit 95 percentile orange could brake contract with you.
That's because Calin gets DDoSed at least once a month, either from externally or internally (like last month). iHostArt customers like me don't care because it's funny.
As the bandwidth is guaranteed, the monthly traffic is unlimited.
It is their duty to ensure that I only consume as many Gbps as I pay out of the total of 10. They cannot cancel my contract because it would lead to huge losses for them. They invested in the 12km fiber between their site and my location, yesterday when I went from 1 to 2Gbps they brought me a new switch (when I say new, I mean new from the factory) plus the three paid technical teams (collaborators of theirs):
Watching your involution here speaks for itself. I don't need to know Octave @OVH to know that he knows his shit, for example.
Sorry but calling amplification rare is more than questionable. Things might have changed a little over the years but not to far back all you'd need would be a box at Ecatel and they are probably by far not the only company that banks on spoofing. With a pipe < 10Gbit the person attacking doesn't even need any amplificators. They can simply flood the target off with spoofed UDP, SYNs, ... Not to mention that even the tiniest of tiny server botnets will easily manage to spew a couple Gbit of packets.
You may be in for a nice surprise.
The contract is mandatory for 24 months.
If I cancel it before the deadline, I pay the difference for the months not completed, and if they cancel it, I can appeal in this court. Obviously, I wouldn't dispute anything. I would move my servers to OVH or back to the old datacenter and move on, but as I said, the chances of your theory happening are below 1%.
i bet someone scan from that range inside the network (not only that one ip):
https://www.abuseipdb.com/check/188.241.240.3
the surprise could be if he get too much abuse complains from othe networks, orange can say byebye?
You know nothing about business. Every company can end their contracts with their customers without any reason as long as they give notice. I bet you didn‘t read the entire Terms of Service.
Wet dreams my friend.
That IP is the old IP of the website, it is not connected to any device.
Being able to suspend someone's subnet through IP Spoofing would be cool, but unfeasible.
A brand new straight from the factory Catalyst 4948 EOL?
I assure you that I have read all 29 pages
That's mine.
They have a separate switch
It was even packaged as xmas gift with a personal letter from the ceo.