DDoS protection on our servers
We provide basic DDoS protection, which helps to limit the amount of connections to the server. We perform constant pro-active monitoring of our servers. A 100% DDoS-protected server needs to be assembled with special expensive hardware with ability of blocking IPs on the deepest levels. Most hosting companies offering 100% protection will charge a lot more for this type of protection. Have a look at the different technologies already in place that will counter 90-95% of the attacks.
1- Csf firewall http://www.configserver.com/cp/csf.html
The firewall filters out the IP addresses involved in the attack and promptly block them.
Deamon processes monitor failed authentication attempts via different applications and protocols and also block the IP addresses responsible if the limit of such attempts is crossed.Port Flooding Detection identifies IP or port flood and mitigates it, helping to block the malicious traffic
2- Mod Evasive
Mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities.
3- Mod Security
ModSecurity™ is an open source, free web application firewall (WAF) Apache module. It provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring and real-time analysis with little or no changes to existing infrastructure. It can do many things, such as detecting for XSS, SQL injection or file inclusion attacks
4- The rest
We are using many other tools available such as ClamAV, RKhunter and Spam Assassin to scan for spam,viruses and rootkits
Please note although it its very frustrating there is no way to fully protect from DDoS, however, when such issues occur our team react's immediately and begins to filter incoming traffic or shut off affected services. We use Nagios monitoring system that notifies us at once when some issues on any of our servers arise. You can be sure that we take our uptime very seriously and believe in your projects as if they are our own!
Thanks for your confidence in us!