Tuesday, August 11, 2009


I have been telling my network engineer friends for years that DDOSs are impossible to stop regardless of what anti-DDOS vendors tell you. I never believed that some magical algorithm can throttle the flood of network packets originating from a bot army of 10,000s. How do you withstand 30Gbps peak of traffic?


  1. It is just like a Tsunami, will be very hard to defense against DoS using proper TCP connection. You can try to distrbute the load by having several servers on various countries and work with ISP to re-route the traffic during attack.

    Other DoS such as Syn flood can be easily defense.

  2. I totally agree with you regarding roping in your ISP to assist.