What kind of DDOS protection do you offer and do you nullroute IPs?

We offer DDOS Protection in Los Angeles and Portland with the following details:

Our current level of protection for Portland is up to 10Gbps for UDP and 15Mpps for TCP (SYN) which is an "always on" setup without any tunnelling involved. We also have protection against ICMP, Layer 3, and other attacks along with the ability to place special ACLs for specific services and attacks. Keep in mind that this protection is shared by the whole hardware node so some attacks may get nullrouted if our entire network exceeds 10Gbps. The data center itself utilizes multiple DDOS filtering appliances and networks with over 100Gbps of combined bandwidth. While we can only guarantee up to 10Gbps/15Mpps of protection before our data center issues nullroutes, we have successfully stayed online during a 30Gbps attack before without a nullroute being issued. Keep in mind our UDP protection will most likely block legitimate UDP traffic so any streaming services that rely on UDP will probably be interrupted by our filtering. If you have a streaming service such as Teamspeak, Shoutcast, Skype, or any other audio/video service, please be aware of this before signing up.

For Los Angeles we have 3Gbps of protection against UDP and 1.5Mpps for TCP (SYN) which is a "detect and mitigate" setup meaning if an attack is detected it will re-route the traffic through a DDOS protected network to scrub the traffic of malicious packets (detection reacts within milliseconds of an attack), to our knowledge this protection is not tunnelled. The hardware mainly handles any Layer 3 attacks but our data center says it is capable of handling Layer 7 attacks also (although we do not advertise or guarantee this). Any attacks over 3Gbps may result in an IP being nullrouted by our data center. For clients who get nullrouted regularly in Dallas or Los Angeles, we recommend migrating to our Portland data center.

Nullroutes are handled by the data centers at their discretion. There is no set time for nullroutes, some may last 5 minutes and some may last 24 hours, it all depends on the size of the attack and the length. If the attack continues after the nullroute is lifted, the IP will be nullrouted again.
  • 2 Users Found This Useful
Was this answer helpful?

Related Articles

Do you offer refunds?

Refunds outside of our Money Back Guarantee are on a per user basis. Please refer to our Terms of...

Do you provide a money back guarantee?

Indeed we do! If you're unhappy with our service for any reason during the first 30 days, we can...

What is SSH?

SSH stands for Secure Shell. It is a secured method of connecting to network device remotely,...

What is rsync?

rsync is the most common backup program used today. It provides many advantages over other backup...

What is vSwap?

vSwap, or Virtual Swap, is a new memory management feature in RHEL 6 (CentOS 6.0) that allows an...

Powered by WHMCompleteSolution