All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Best Shared Hosts for DDoS Security = Minimal Down Time
JohnBurner
Member
After 30 years online, our small-business website is now being attacked by DDoS. It's been going on for 2 weeks, and our web host keeps shutting us down. We signed-up for CloudFlare, but then the attackers started entering directly thru the shared-server IP address. The web host then changed our IP address and kept it private. But the DDoS bots then must have tried all of the host's IP addresses, because they found us again and continued the attack. Our host has incredibly good support, but admittedly poor DDoS tools. The attacks stopped a few days ago and we're back up, but to be safe I think we need to find a shared server host with robust DDoS mitigation tools. We can afford up to $20-30/month, a bit more if it buys us peace of mind. Can someone offer a list of web hosting companies that fit the bill? Thanks in advance. (p.s., we looked into Amazon AWS, but after you add in 20 email addresses, Cloudfront, WAF, and minimal human support, it's over $2,500/yr.)
Comments
@RoyaleHosting (https://royalehosting.net/store/webhosting)
@MikeA (https://extravm.com/webhosting.php)
All of our servers are DDoS Protected. You also can use the servers for your webhost.
https://cp.packets-decreaser.net/cart/kvm-vserver/
What type of site (what's the software backend?) If you can DM me some info about it and your current setup that's not working I can probably help, be it a VPS or web hosting (even if it's not with me), and make sure your CloudFlare setup is right. Best thing is to make sure your site IP isn't public and ideally CloudFlare Pro does wonders. I deal with weekly HTTPS attacks against my sites.
Software backend? I don't know. It's a Wordpress DIVI site, and the host has their own online mgmt tools (no C-Panel).
By the way, the site is just 8-pages, Wordpress/DIVI, probably no more than 100MB, and very low daily traffic. We do need 20 email addresses. That's about it.
The ExtraVM.com site posted by DP looks interesting.
The packets-decreaser.net looks over my head!
The most basic step i usually follow for sites that can attract dos is setting the rules to only allow CF traffic(or any other protected ip) and deny everything else. Go with @MikeA or you can also go with @speedypage. And I think namecrane also have DDoS protection?
@RoyaleHosting has shared hosting and excellent ddos protection.
Go with @MikeA . He can probably help you out and give you some good pointers and direction.
When suffering from DDOS attacks, it's nice to have someone knowledgeable to talk to.
Thanks all. I'm going to try MikeA. Sounds like this will work.
Wise choice, this is my review of ExtraVM.
https://lowendtalk.com/discussion/196009/extravm-2-year-review
Is it probably accurate to say using Cloudflare is more important than the choice of web host?
Any opinion on bunny.net as an alternative?
Hello @JohnBurner
Your website has eight pages, so shared hosting would be sufficient for you. Regarding your primary issue of DDoS attacks, all our hosting plans come with built-in DDoS protection. We have tailored our servers to keep websites safe from even the most advanced attacks. We also have server firewall and malware protection and provide free SSL.
Our WordPress hosting's Startup ++ plan is ideal for you at just $2.99/mo, including 150 free email accounts—perfect for managing your business communications without any additional cost.
Plus, our team of WordPress experts is available 24/7 to support you, whether you have technical queries or security-related issues.
Feel free to reply if you have any questions about our service.