GoFuckYourself.com - Adult Webmaster Forum - View Single Post

mfeat50 · 07-21-2011, 03:58 PM

The best way is to have a device installed where your webserver is hosted that analyzes the incomming traffic and then tries to find a pattern in the attacking traffic, then filter that out. The device will have to learn what bad traffic looks like so it may take some time.
These devices are not cheap, but downtime is not cheap either. Look at the big brands like CICSO.

My experience is that it will work over time, but you will probably also filter out some good traffic.. But the bad guys will give up on the attack once they see its not effective any more and then you can disable the device ;)

07-21-2011, 03:58 PM
mfeat50 Registered User Industry Role: Join Date: Aug 2010 Posts: 40	(d)DOS attack The best way is to have a device installed where your webserver is hosted that analyzes the incomming traffic and then tries to find a pattern in the attacking traffic, then filter that out. The device will have to learn what bad traffic looks like so it may take some time. These devices are not cheap, but downtime is not cheap either. Look at the big brands like CICSO. My experience is that it will work over time, but you will probably also filter out some good traffic.. But the bad guys will give up on the attack once they see its not effective any more and then you can disable the device ;)