How to protect website from DDoS attack ?


New Member
Use a provider that has integrated ddos protection.
CloudFlare (or similar)
Nginx + mod_security (but depends on many things, it's not a one-size fits all solution)


I suggest you to order good DDoS protection. You can read reviews and choose the best protection which will be suit you for price and efficiency.


New Member
Agreed with the recommendation that if you're concerned about DDoS that you pick your provider carefully - ensure he has additional DDoS protection. Cloudflare isn't set up to protect against DDoS attacks - it only give you the ability to monitor the attack when it happens. If it's to protect a games server, I think one has to go all out to get a host who specializes in games servers as if he is a serious games server host, he'll have purchased additional DDoS protection and be able to offer this to you.


New Member
I agree, using CDN is the most popular when it comes to protection, but you can also buy a good DDOS protection for your server.


New Member
If you're operating the infrastructure:
  1. Large pipes to protect against attacks that are trying to saturate your bandwidth: 10Gbs - N x 1Tbs, depending on size you want hold against
  2. Routers that can do N x Mpps - against attacks that try to saturate your number of packets per second
  3. A hardware solution that cleans traffic, like Arbor


New Member
To protect website from DDoS attack:
1. Strengthen the bandwidth
2. DDoS mitigation (detecting the attack)
3. Use Content Delivery Networks (CDN)
4. Contact Internet Service Provider (ISP)


New Member
Most hosting companies now offer DDos protection like Cloudflare based servers. So you could actually find a host that has ddos protection for their servers. Seperate ddos protection for your server will cost you additional.


Activate a WAF
A Web Application Firewall (WAF) is a layer of protection that sits between a website and the traffic it receives. We dive deeper into the topic in this article about what is a WAF.

There are several WAF solutions that will offer automated mitigation of DDoS threats, but one of the best ways to define which WAF works the best for your application is to analyze how effective the protection is—whether it’s within the budget or if your team can properly configure it.

Activate Country Blocking
Country-based blocking is typically effective at minimizing risks. It can also help in complying with some organizational policies whose intention is indeed to “block hackers”. Here are a couple of things to note:

Regional origin is irrelevant to computers; a website firewall can only see IP addresses. Inferring geography from IP addresses relies on big tables that are never completely up to date.
Working around these blocking systems is trivial for attackers. It suffices to use some form of anonymous proxy or proxying from outside of the blocked country list, and this happens “naturally” when using Tor, which is a free and open-source software for enabling anonymous communication.


New Member
DDoS or Distributed Denial of services attack is an attempt to affect the availability of a targeted system, such as a website or application, to end-users. There are some techniques to protect your websites from DDoS.
Plane for scale, The two key considerations for mitigating large scale volumetric DDoS attacks are bandwidth capacity and server capacity to absorb and mitigate attacks. Make sure your hosting provider provides ample redundant Internet connectivity that allows you to handle large volumes of traffic.
Know what is normal and what is abnormal traffic, Whenever we detect elevated levels of traffic hitting a host, the very baseline is to be able only to accept as much traffic as our host can handle without affecting availability.
Reduce the attack surface area, One of the best techniques to mitigate DDoS attacks is to minimize the surface area that can be attacked thereby limiting the options for attackers and allowing you to build protections in a single place.
I hope this information helps you.


New Member
Use the following steps:

Call your ISP and change your IP address . (Sometimes simply unplugging your router for a day will change it too)
Download malware bytes (free trial) or spybot s&d. If it's important to you and to be 100% sure, factory reset your PC.
Don't Skype people you don't trust, join Team speak servers, or download anything suspicious. That's how people can obtain your IP
Use a VPN. If the game (like Mine craft servers) block vpn usage, connect to the game then switch to a VPN.


New Member
There are a lot of hackers with malicious intent that want to break your website. They use a variety of ways to initiate attacks, including the following:
  • Asymmetric traffic attacks, where a website receives a high volume of fake user requests that are intended to over-consume server resources.
  • Targeted traffic attacks that increase the load on a hosted application, causing it to fail.
  • Multi-level attacks that target both the website and the hosted application at the same time until both crash.