Forum OpenACS Q&A: Re: big problems with mydomain.com?

Collapse
Posted by Petru Paler on

Why did it take 14 hours to filter the traffic?

No planning, I guess... it takes about 5 minutes to stop a DDoS -- the target is still losing connectivity, but at least it won't bring the whole network down.

Unfortunately, US-based ISPs don't seem to react to well to DoS attacks (usually because they have networks so big they're not affected themselves, and they don't care if one customer goes down), so to be prepared for something like this one needs to talk to them in advance and make sure the procedure is established (and do a test lockout of one IP address).