New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Sure, not good for a big tech monopoly and I'm personally not a fan of cloudflare, just saying that most of our controversial clients seem to utilize them. Probably just because it starts free and can easily mask your server's origin from the public assuming they set things up properly.
Cloudflare is also fairly resilient when it comes to speech things too... More so than many mitigation companies, but that's a benefit of being US based and not UK or Australian based or something. Took huge deplatforming campaigns and threats to get them to terminate service to Kiwifarms. Its not the most ideal solution but I've seen far worse content behind Cloudflare and the only conclusions I have is either not enough noise is made for those other sites removal to care of they're just literally collecting data for law enforcement or a combination of the two.
Would rather see more feasible options but transit is expensive and even transit providers can play activists and restrict access to legal, free speech: https://en.wikipedia.org/wiki/Hurricane_Electric#IncogNET_dispute
Tbh I think GCP, AWS, Azure would try to mitigate insanely large attacks even for small clients. Not because they care about the $20 a month but because they care about the reputation of their protection capabilities.
I don't think it's the case, but the only realistic option to check is to convince some gaming hosting of so.
@MennoGamed what about testing the @emgh 's theory?
Tbh I was talking more about all of the managed solutions they offer, not really if you just slap a Minecraft server on a compute.
Elaborate please? I am not sure what kind of managed services are available for publicly facing things. The only thing I could've come up with is S3, but I think I heard a lot of cases when it was DDoSed, but attack's goal was to drain victim wallet, not to take down the cloud/their service.
I'll take it :3
thanks
I’d love to test it, but the biggest attack I’ve ever had on my setup was “only” 49.6 Gbit/s.
I also wouldn’t know where to start with setting up the BGP for it, knowing I’d have to move my infrastructure from DataPacket to GCP, AWS, or Azure.
Another big problem is that many game hostings (especially smaller ones) rely on things like GRE tunnels, which aren’t exactly smooth to run through GCP, AWS, or Azure.
Is that supposed to impress anyone?
No, quite the opposite.
We are mostly fine. We had to renumber IPs for around 3-4 clients in specific US locations. That's pretty much the extent of the impact for us.
Almost all of our DDoS-Protected IPs were sold in APAC, and we already moved those to GSL well before NeoProtect went completely offline.
We are looking at other mitigation options and providers, but this is our plan for the time being:
Our goal was to provide our clients with a cheap option to add DDoS protection to their cheap service. By adding NeoProtect, we wanted to potentially compete with some of the game hosting providers in the industry by offering high levels of DDoS protection as an opt-in option.
It has become abundantly clear that we are simply not prepared for this, and there are not really many reliable DDoS protection solutions in the industry that would meet our standards. Even before NeoProtect's global outage, they were constantly having intermittent issues.
All of the other DDoS protection solutions with global PoPs that we've evaluated have consistent intermittent issues or are wildly expensive, so I'm not sure if we'll ever go back into the game hosting/DDoS protected VPS market again. There are plenty of other providers that are better suited than we are.
In my 11 years of self hosting... I have honestly never witnessed or seen a DDoS attack against my infrastructure. I have seen DDoS attacks against many ISPs including the one I used to work for many moons ago.
You must be a really big target to attract DDoS. I think you'd have a more devastating impact breaching said infrastructure.
Not that this is an excuse to dismiss or aim for me please, I know I have some enemies that would wish ill on me but the worst I have ever received is 4 pizza box orders to my address with the payment type as cash that I did not make.
It's mostly caused by DDoS-for-hire services being cheap and easily accessible. Breaching infrastructure is tough, but sending a DDoS attack is extremely simple.
Game servers are the main target, people DDoS each other for some reason, even if the targets are not necessarily big. Sometimes it's for a financial motive (e.g., ransom), but I think most people just do it for fun.
For fun is why cheaters in game are so rampant.
Hurting a community by DDoSing? Yeah I can believe a lot do it for fun.
yummy pizzas
Advin is a bit different since he gives so much CPU/RAM in his pricing, but it'll just be gameservers and people swinging their dicks/tits around and starting fights. On the 'expensive side' like BuyVM is we get tons of kids that setup reverse proxies/tunnels/whatever to go protect some other provider (hetzner, etc).
Its almost always gameservers.
Francisco
I've publicly hosted game servers... not like big but it's been something I've done... and yet never had anyone attack it.
I get that it happens... but some how I've dodged everything.
Sucks to be a DDoS mitigation provider these days, everyone operating at a scale based on past attacks found themselves with a network that was several times too small, in the span of a month or two. RIP Neoprotect.
I'm curious if there's any documented impact to DataPacket from this attack that prompted them to discontinue service for Neoprotect, or if any other DP customers noticed anything.
I'm asking because I'm pretty sure they wouldn't have done this without good reasons. But also I have servers at DP in many of the same locations where Neoprotect was operating from, and I have a quite sensitive monitoring set up, but I've seen no impact whatsoever in my monitoring logs or traffic charts at the times mentioned by Neoprotect.
For example the same monitoring showed a clear impact to the network when other customers at Cosmic Guard, GSL, Hetzner and OVH were targeted by Aisuru over the last month or two.
I have datapacket stuff in most of Neo's locations and saw zero impact. They probably just didn't think it was worth it $ wise.
yes, but the team is crazy awesome dealing with it. APAC has always been the source of attacks (vietnam, etc) and they're doing everything they can.
example: upgrading 600G in Equinix Singapore IX, that's $20k monthly alone.
adding more private links between SG<>HK, HK<>TW, HK<>TYO, to absorb any attacks & expanding their capacity.
DataPacket has BANNED XDP on ther network. So that was the reason behind NeoProtect's downfall. This can't be a good thing.
Do you have an email or notification you can share? Because XDP is a feature/tool, so it's absolutely crazy to generically ban something like that...
I have the chat from their support team. For some reason, that's not showing up while i did upload it. Any idea how i can post it here? An gyazo link in upload failed. Hope the links below works.
So I'm hoping for more information from the sales team (which I already find strange, since this concerns the core network) with a better explanation. If I get it, I'll share it here, of course.
I would recommend you to take a look and have a call with X4B, seems to have all the locations you need and is very flexible
I only had bad experiences with them. arrogant and unfriendly.
But this was years ago.
I doubt that it is a technical restriction. Instead, I think that it is a signal to not resell their network for DDoS protection services.
However, I find it funny that DPDK/VPP stays out of question and isn't being mentioned by them :D
Can't believe DataPacket killed NeoProtect instantly like that. The Remote Shield thing was their main revenue stream. They must have had some sort of contract with DataPacket being their only upstream provider for that service. NeoProtect will probably sue for some serious damages.
One VPS I bought was specifically for the NeoProtect features so pretty disappointed it disappeared overnight. Maybe I should sue also.
That’s a strange point, yes. I’ll ask about it right away when “the sales team…” responds.
Datapacket does not really like contracts, from their FAQ:
With that being said, I highly doubt that Datapacket is going to offer contracts for a few Dedicated Servers.
We also talked to DP Sales a few years ago and they were not happy when we mentioned the term "contract", especially "long term contract"
So I'm quite sure they want to get rid of problematic customers as soon as possible.
Quote from DP Sales:
To be fair, I don't see it clearly advertised where they specify how much of their network is dedicated to DDoS mitigation! 270 Tbps capacity would lead you to believe it's pretty high, but maybe they have a low threshold.