New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Sucura Networks – East Coast VMs with FREE DDoS Protection + BGP – From $5.63/mo (AS398999)
This discussion has been closed.
Comments
We've got the same observation testing from BuyVM and RoyaleHosting NYC VMs to Sucura NYC. Should be a couple ms at most, same city, but packets go everywhere else first.
@MannDude I need all the BGP with downstream I can eat from you!!
Even outside DDoS mitigation, Cloudflare does offer decent stuff like ASN/country-level blocking, CDNing, etc.
Yep — for the 2 vCPU+ plans, if you need downstream just ask and I’ll waive the fee.
🌏 Singapore POP Now Live!
We just added our 8th location: Singapore (Asia-Pacific)
All Active POPs:
142.248.30.10142.248.30.15142.248.30.20142.248.30.30142.248.30.40142.248.30.50142.248.30.55142.248.30.60Ping the closest POP |
142.248.30.1Singapore benefits:
- Local connectivity for APAC customers
- Low latency across Asia-Pacific region
- Full DDoS protection
- VMs coming to this location in the coming months.
I see quite a lot of suboptimal anycast routing on globalping. A few examples:
Scenic routing within Europe:
Routed from Europe to a different continent:
My 2 cents based on my experience:
Was late seeing this thread, hopefully I can still get double bandwidth
Order 7385157316
Bandwidth doubled
Routing SG is Bad
Gotta love someone trying to enter the DDoS prot space with less than 1Tb capacity (while claiming to be for volumetric attacks, lol) + (as far as I can tell) no application filters?
Not to mention the "Always-on scrubbing – no manual activation needed" and "Sub-second attack detection" statements. Which one is it?
Fair questions - let me clarify:
Capacity: 900Gbps+ is our current aggregate across 8 scrubbing centers. We're transparent about being sub-1Tbps total. For most SMB/gaming workloads, it's plenty. If you're expecting 500Gbps+ sustained attacks, we're upfront that we're not Path or Voxility .
Always-on + Sub-second detection: These aren't mutually exclusive. "Always-on" means all traffic flows through scrubbing infrastructure 24/7 (not on-demand like some providers). "Sub-second detection" means our monitoring triggers active mitigation rules within ~500ms of attack traffic appearing. Both statements are accurate.
Application filters: We have L7 support for specific game protocols (FiveM, Minecraft, etc.) but it's not a full WAF. We're honest about focusing on volumetric/protocol attacks. L7 expansion is on the roadmap.
We're not claiming to compete with enterprise providers charging $5K+/mo. We're offering solid L3/L4 protection at SMB pricing for people who need it without Cloudflare. If that's not your use case, no worries.
I think you're grossly overestimating your level of knowledge on this subject. Just because there have been recent large attacks skewing the numbers (aisuru), does not mean it's the norm.
In fact, if you read Cloudflare's latest breakdown, only 1 out of every 200,000 attacks they recorded exceeded 1Tbps.
The most common attacks are still averaging less than 100Gbps sustained.
Those are not contradictory statements.
It would be if they were not constantly routing through their scrubbing centers, which I presumed they were doing as they claim "Sub-second attack detection".
This simply isn't the case, especially because of Aisuru (and others like/related to Aisuru, e.g Kimwolf) and their ability to sell limited amounts of their botnet instead of all of it.
Botnets within the DDoS-for-hire community reach well above 100Gbps (sustained) regularly, especially for things such as game servers which usually have application-specific DDoS protection.
In fact, raw botnet DDoS-for-hire services sustain attacks in the hundreds of Gbps to low Tbps (on average). Sure, Airusu might skew the averages a bit, but its not like attacks above 1Tbps dont happen regularly. They do. The breakdown you mentioned gets diluted down heavily with all of the application specific attacks Cloudflare has been attacked with.
Sowwy big pappy swiftnode. Kiss my ass. I don't even know why you are replying to my comment as i got the answers I wanted from Eric already.
Would you like to get further into my asshole or is that far enough?
Hold my coffee.
Even if they (Sucura) weren't constantly scrubbing at each of their edge locations, they could still be leveraging upstream carriers (like GSL) to handle volumetric attacks, providing sub-second detection/mitigation that's always on without any in-house filtering even being needed.
So even in your scenario, again, it would not be contradictory to say "always on" and "sub-second detection."
If you want to argue against Cloudflare's published data, go right ahead. I can't really refute your feelings and anecdotes.
Sustained and peak are two different metrics. A big player like aisuru can absolutely skew the numbers, and they have, but the average attack is still under <100Gbps sustained when you look at hundreds of thousands/millions of DDoS attacks. Just because you have large outliers does not mean you ignore the averages.
You have to remember that for every attack that exceeds 1Tbps, there are ~200,000 other attacks, most of which are going to be substantially smaller. (and that's just using the recorded Cloudflare data, not aggregating other big players like GSL, Voxility, Path, Datacamp/Cdn77, etc)
The most common attack vector in 2025 was the same as it has been for the last 7-8 years, DNS.
The value those services are claiming are almost always highly inflated. Just because they spin up a website or telegram claiming to offer 5Tbps floods, the reality is often a lot different.
Again, I'm going to stick with the actual data, if you want to believe what some random stresser website/telegram claims, more power to ya.
Relying on upstream carriers like GSL isn't quite the silver bullet you're making it out to be. GSL's protection varies depending on the settings configured in their portal, and they're not exactly known for handling PPS based attacks well.
More importantly, that's not necessarily Sucuri's protection. that's basically outsourcing to a third party, which has its its own set of limitations and capabilities. If their "sub-second detection" depends on their upstream carrier specializing in DDoS protection and mitigating the attack, that's a bit different.
I'm not disputing Cloudflare's data, I'm disputing its relevance to this context. Cloudflare's dataset includes millions of small application layer attacks towards HTTP/s, AND everything else they offer (e.g Spectrum). That naturally pulls the average down significantly. Understanding what data represents isn't "feelings and anecdotes.".
I'm aware of the distinction which is why I specifically used "sustained" in my original comment. And yes, the global average is under 100Gbps, but remember those averages are across millions of attacks to an entirely different customer base. It wont reflect the attacks Sucura faces.
I don't necessarily disagree with this (especially towards non gameservers or alike), but I'm not sure how this is relevant to the discussion about attack volume/capacity. DNS amplification being a common vector doesn't contradict anything I said.
I'm not citing anything from any stresser. I'm citing real world observations made by myself. But if we're going to talk past each other, there's not much point continuing. I got the information I needed from Eric's response anyway (again, why are you responding??).
get that fist out of my ass, respectfully.
Quick Christmas update for everyone watching this thread:
We're running a holiday sale through January 1st:
🎄 VMs: 30% OFF all small/midsize VMs (starting at $5.25/mo) - Code: XMAS30
🎄 Bigger VMs: 40% OFF on VM-4C-8G+ - Code: GOBIG40
🎄 GRE Protection: 50% OFF (100Mbps for $32.50/mo) - Code: PROTECT50
All discounts are for life, not just first month.
Full details: https://sucuranetworks.ca/#christmas-deals
Happy holidays! 🎅
was going to order a GRE tunnel but your site seems soo vibecoded
i feel like even a template would have looked better
Hello, can i get Trial for GRE Protection with BGP in Singapore? i tunnel from Indonesian Providers
Yes of course, please open a support ticket on https://services.sucura.ca/ or join the Discord https://discord.gg/vWt4dzsuWd and we can get you started.
Comment Deleted
https://lowendtalk.com/discussion/137719/lowendtalk-community-rules-updated-september-2025/p1#thingswehate
If you've started a discussion or posted a comment, please do not delete the content afterward, only to replace it with messages like "delete", "delete please", or anything along those lines. If you've made a mistake, it's best to retain (and strikethrough) the original post/comment, and simply add a reason/note, e.g., "EDIT: Request fulfilled", "EDIT: Posted in the wrong thread/category", or "EDIT: Unintended double post" etc.
Thanks for pointing out.
Will do in the future
Heh, I actually thought GSL was well suited to stop PPS attacks? Especially with their blog post about 3.15 Gpps. The only downside I see is that they don’t have Layer 7 protection. I’m actually considering connecting my network to GSL.