New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
who has the best out of the box DDoS protection?
ilikebeans
Member
Quite a simple question: who has the best out of the box DDoS protection (Best DDoS protection without me having to customise it)?
I REPEAT: I am looking for the best all round DDoS protection solution for a standard Linux OS that has the following VPS/Dedicated server spec:
1-10Gb/s guaranteed networking speeds
Any CPU that has more that 16c/32t (preferably higher than 4.5ghz boost)
32gb of ram (DDR4 or DDR5)
100gb NVMe SSD
Any Linux OS
1 IP (No BYOIP)
Comments
OVH unless you want to spend big money
From what exactly do you need a protection? Volumetric attacks? Application-layer filters?
All round best, just for a standard Linux OS.
I like Arbor filters at Hetzner dedicated servers. The only downside is sometimes not instant activation, but once filters are enabled, no TCP attacks passed through.
Sometimes Hetnzer Arbor can be a bit dodgy and not setup correctly or something on some servers.
No, they work properly at Hetzner. Never seen legitimate traffic being discarded. Works out of box for me.
You're right kinda. I haven't thought about it but I have two very old systems with OVH still and these are never touched, and I still get DDoS notification emails every day or two. They're never down, haven't been for years.
OVH.
One exception I've found is wireguard. If you push high traffic over wireguard such as running a speedtest with ovh as a wireguard vpn, ddos mitigation triggers and kill your tunnel. No amount of whitelisting IPs, ports, etc in the management panel prevents this.
Hey!
Probably OVH, but it has it's own limitations in terms of "false positives".
If you're lucky enough to find a server with 25Gbps inbound, as we have in our new VPS line, probably is even better than normal protection.
We provide out-of-the-box filtering that works well without any adjustments, but we recommend tweaking for truly stateful filtering. Feel free to send a DM if you'd like to discuss your specific use case.
Hi! What DDoS protection do you actually have, and do you sell servers one by one? I only see the ability to buy something enterprise ?
We can be your choice. We provide out-of-the-box DDoS protection.
Additionally, basic protection is included in our pricing plans.
For example, I can offer:
CPU: DUAL E5-2630V3 (16c/32t - 2.4GHz)
RAM: 48GB DDR4
DRIVE: 500GB SSD / 2×2TB HDD
PORT: 1G
BANDWIDTH: 1GBPS
$90 per month
If interested and the price is ok for you, you can contact us using DM at LET, live chat at https://vsys.host/ or email [email protected]
To get this price, kindly mention that you are from the LET!
Additionally, you can get advice on DDoS protection services in the live chat.
Or I can answer all your questions here as well.
Or
CPU: DUAL E5-2670V3 (24c/48t - 2.3GHz)
RAM: 64GB DDR4
DRIVE: 1TB SSD / 2×3TB HDD
PORT: 1G
BANDWIDTH: 1GBPS
$110 / m
We can offer our in-house filtering, which utilizes NTT, Tata, and DataPacket transit, or you can opt for CosmicGuard right out of the box. If you need a dedicated server, we have a dual E5-2670v3/2680v3 available, with 128GB memory, 1TB Enterprise SSD, and 1Gbps unmetered bandwidth for $130/month. Or a VM with 250G SSD, 32G Memory, 16 cores, 1 IPv4 and Unmetered Bandwidth at $49/mo. Feel free to DM me if you'd like to customize a deal, and we can continue the conversation on Signal, Livechat or Discord.
Like mentioned, OVH is not bad. I get emails about DDoS filtering being enabled and never seen it actually down from ddos. Also, @RoyaleHosting has solid ddos protection.
A server provider is going to specialise in providing servers, if you are serious about protection you need a DDoS protection provider. For everyone else, its an addon.
Interesting. Wouldn’t a DDoS protection provider have resellers?
You can buy from the provider but I’m not sure they’d have what I want.
What providers would you recommend?
You missed the point. A server provider provides servers, a DDoS protection provider provides DDoS protection. To a server provider DDoS protection is a value add, or a technical requirement only.
The skills and problems being solved are different. This is not a reseller problem.
I used to think this, but I discovered they just rate limit stuff in a way that causes the server to go down. Like with wireguard specifically, they just rate limit the traffic to 50 mbits even if you get an attack that doesn't look like wireguard.
I haven't had an issue with GSL, but I only have a server with GSL transit for 1 year.
Sure, we're in the server business, but who says we can't multitask? DDoS protection isn't just an add-on for us, it's baked right in. We handle complex protocols that leave others scratching their heads. So if someone's serious about protection, we've got them covered.
Interesting. I’ll for sure be in contact with 6tb/s of stateful filters haha.
For sure it will be @RoyaleHosting
Glad to hear it! Feel free to reach out via DM here, Discord, live chat, or open a ticket right on our website! We're more than happy to get you set up.
Thank you for the mention!
Thank you for the mention as well!
We should be able to help you with this! we are also happy to customize it for you if needed.
Could you contact us through livechat, email or through this platform to discuss a quote?
Yeah, protecting things like tunnels/vpns is not the best at OVH, and since they don't touch filters you're out of luck if something doesn't work but their game mitigation does better. But for a "one fits all" protection it's good. If a service is down due to an attack, your actual server itself will still be fully accessible.
He recommends himself and the amazing anti-ddos solution he offers. But fear not, if you have an issue setting up anything, hes willing to answer very simple questions for a measly 40 usd/hour price since his time is too valuable to offer any answers for free no matter how short/simple/generic they are and if its related to the advertised product you have purchased. His arrogance alone will protect your services.
@stefeman I can't recall what I did to piss you off.
But for reference we charge $45/hour (hours on your project) for management as part of a management program that year after year costs us money to offer to customers (rate does not recoup costs).
Generally management is required for one of 2 reasons:
1) we will need to access a third party server (e.g yours) for troubleshooting or setup
2) we will need to develop, research or otherwise devote significant resources to your problem that far exceeded an unmanaged support agreement
Best of luck and sorry I / we made you upset.
I tried you back in 2021 and dared to ask a generic question about your tunneling script as I had issues getting it work as intended. You responded with most arrogant "I dont have time for you cuz you typoed "My services" page instead of "Your services" and overall treated me, a paying customer who put good amount of money in like shit stain. Your response was agressive and uncalled for. I figured its less trouble telling others in my circle to avoid you and forget any funds I already put in than apply for refund or file a chargeback. Given ur vengeful nature, you would have added me to fraudrecord like you secretly do with others that get on ur nerves when ur having a bad day. I know cause ive seen those submissions myself.