New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
LF host with a TLS filter.
ilikebeans
Member
Hey, I’m looking for a new server provider that I can host my L7 DDoS protection/website on.
Specifically, I’m looking for a dedicated server that has TLS filters applied to port 443, as well as a firewall panel, if possible. For the specs, I’m looking for anything better than or equal to a 5950x, 32Gb of ram, and a 10G port (fair use OR unlimited). Really, I need a decent NIC (connectx6/7), preferably mellanox.
There should of course be generic DDoS protection for server if I do not have a firewall panel, volumetric protection, filters already applied, etc.
My budget is $600/m, if you can provide further L7 protection on top of IP’s that’s even better, but if not, don’t worry, I’m fine without it.
Comments
Unfortunately, we don’t offer dedicated servers, but we can provide you with a GRE tunnel that includes TLS filtering.
GRE Tunnel Packages
Standard Package – €200/month (prepaid)
Premium Package – €300/month (prepaid)
How It Works
Our GRE tunnel allows you to route our protected IPs to any server of your choice, enabling you to benefit from our DDoS protection and filtering.
Since we don’t provide dedicated servers, you can easily pair our GRE tunnel with a Hetzner server or any other provider that meets your hardware requirements.
Let me know if you’re interested or have any questions!
@crunchbits
?
Not quite yet, but pretty much exactly what he's asking for Coming Soon™
Your anti DDoS protection is doodoo (pretty much just ratelimit) and your L7 protection is just built off of baloo’s protection (wouldn’t surprise me if it was literally just balooProxy).
I don’t suggest anyone goes for this guy — under the hood (I’m willing to bet) is just stolen code.
Clarification: DDoS protection/ bad & stolen.
No thanks
We don't just depend on ratelimits.
Our mitigation includes several other steps, which are detailed on our documentation page.
Yes, a modified version of Balooproxy is part of our Layer 7 protection, but it's only one part of a larger system.
As for the stolen code claim: Balooproxy is fully open source and publicly available on GitHub.
We follow proper licensing and do not steal code.
Have you made any contribution to Balooproxy mainline codebase?
For example, bug reports, pull requests, financial sponsorships.
While GPL-3 does not require you to make contributions, an open source project is only sustainable if the commercial providers that profit off it make contributions to help its growing.
GPL-3 requires that the modifications are also open-source. I don't see any link to any repo...
You probably confuse it with AGPL which is must for network distribution, on GPL-3 is more concern about distribution which as long you not distributing any binary to other (private usage), there no need provided the source code.
Agree, If this just small subset on your system, perhaps give some contribution of hand is honesty great idea.
Location? We can provide this server on Miami, Houston or Spain
I'm really not here to offer anything but I'm willing to know what does "TLS filter" mean, As far as I know you can't just filter TLS, rather the application based on TLS. Are you planning to run a webserver? Perhaps a game?
@RoyaleHosting appears to specialize in this. https://royalehosting.net/ddos-protection -- not sure if you could reach out to them and see if they could meet your specific hardware needs.
I think it is protocol enforcement that filters out any other types of traffic (including random junk) and/or TLS protocol violations
This ^^
Got it, Thanks! Now i see the purpose.