-
Welcome to ForumKorner!
Buy, Sell, Trade, Discuss—All in One Place.
[ARCHIVED] Massive DDOS
- Thread starter RAF
- Start date
RE: Massive DDOS
no offense but I highly doubt there was 800mbit/s in ddos attacks, that is almost 1gbit/s in attacks, meaning a 1000mbit can use 333TB a month, 11-12TB a day, in an hour 0.5TB(HALF TB) or 512GB an hour in bandwidth alone..
If you even got an attack that high the company you are with would of canceled you, because it would of affected other servers as it would cause many problems with network, and they would make you pay hundreds of dollars..
Let's see your graphs, I'm not saying your a liar or anything, I just think your host or you are not reading them correctly, post what you have exactly..
I'm thinking at the most you got is 80mbit/s.
I know when I was hosting you I was getting 200-400mbit/s attacks, and a few larger ones once in a while, but it's because I had a dedicated 1gbit line, I had that bandwidth but it could still affect the network traffic to other servers.
Another thing is, you can't "firewall the traffic" that is impossible to filter 800mbit of attacks with scripts or even most hardware, even $25,000 hardware can't filter that out, the only kind of hardware that can filter out attacks that massive is RIOREY which costs in the range of a quarter of a million to a million dollars, for the hardware alone, and you need the bandwidth to back it up, but it doesn't even filter all of the traffic, and the traffic is still coming into the pipe which means you will still have to keep paying the bandwidth bill. [
Hey, 1337Inj3ct0r
We better watch out for MR. elite he might take us all down with his "elite hacker skills" Oo..
He's got me shaking in my boots like iron should be.. lmao
Correct, you can't make anything to stop any decent size attacks, maybe something like a booter or alike, but software/scripts will never work in real life flood attacks and 99% of the time it will actually do more harm than good, because it will require ram/cpu to work, which when a attack/flood happens is already causing that so it's going to make the server work extra hard vs if you never had the scripts it wouldn't work 10x harder, but the main things that an attack is doing is either,
#1 It's killing the connection(pipe) It's overloading the pipe in other words, if your connection is a 100mbit connection, and they are ddos attacking with 500mbit, your connection is going to die due to the massive incoming traffic, and no matter what kind of software or even hardware it will never survive.
#2 It's killing the cpu/ram on the server by overloading it and making it work harder than it can, causing massive loads, it can use up the ram or cpu or both and it can even kill the server by making it crash because it cannot handle what is going on, by trying to respond to for example http connections, syn reply's or mutiple things depending upon what kind of attack is going on, or what is setup on the server.
You can protect your server by doing some ip table rules, which can stop smaller attacks, nothing major, and if it's overloading the pipe like #1 it will fail no matter what, but sometimes if you have a pretty fast server this can keep the server online or site online, even if it's lagged to hell, next is getting hardware but it's very expensive, some datacenters already have hardware already at the core of the network, or you can pay an extra fee to have your server protected by them, but hardware firewalls are very expensive, they cost in the range of at least $25,000 for average cisco firewall but even that $25k firewall will still die in a semi-large attack, for example all cisco firewalls that they have ranging from $25k to $100k will not be able to handle an attack of the size of 1000mbit, they will all fail, even if you have a dedicated 1000mbit line, they just are not made to withstand these types of attacks, some of them cisco firewalls can withstand attacks under 100mbit but not all of them, some can only withstand 10mbit ones.
The only type of firewalls that can withstand attacks of 100mbit to 1000mbit are RIOREY firewalls, but they even do have models that can stop/filter attacks up to 20gbit/s or 20000mbit/s.
The 1gbit riorey firewall costs $30,000-$40,000, the 10gbit riorey firewall costs $80,000-$100,000 and the 20gbit riorey costs over $300,000 which is the only firewall in the world to withstand and filter an attack of this size.
Riorey is the only firewall that is out of the box ready, you put it at the core of the network and it can protect hundreds of servers, it monitors usage and patterns of traffic, and when "bad" traffic or spikes in traffic happen it kicks in and starts filtering the attack before it gets to your pipe(router) it doesn't work perfectly and sometimes actually blocks real traffic, but you really don't have to do anything with it, it's just ready to go, and the company can actually monitor things and do updates to stop new types of attacks, it can stop all types of attacks out there from http floods, to syn, upd, imcp, and many more, It's a really neat hardware and the software is pretty cool too, I've used the 10gbit model before on another network I was on, it really does work, and you might think it's actually a rip off or expensive but it's not, It's really cheap in the long run because it pays for itself.
If you think about it, most companies charge for ddos protected hosting, I'm not talking companies that say they have ddos protection and just null your ip address, I'm talking major companies that can actually stop it, or have riorey protection in place.
If you purchased ddos protection for 1000mbit(1gbit) ddos attacks, you can pay in average of $1,000-10,000 a month and higher.
If you purchased ddos protection for 20gbit ddos attacks you can pay in the $50,000 range plus the bandwidth costs, so you can be talking a $100,000 a month, so if you purchased that 300k hardware and you get some clients that are buying this from you, you could pay it off in a good year or less.
This was my bordem post, hopefully I have taught you guys a thing or two, and you learned something from it.
I am considering starting to post some tutorials and some of my ideas and things about attacks, malware and such if anyone is interested please let me know and I will start some topics on some things, I'd like to know what you guys want to learn about. l
no offense but I highly doubt there was 800mbit/s in ddos attacks, that is almost 1gbit/s in attacks, meaning a 1000mbit can use 333TB a month, 11-12TB a day, in an hour 0.5TB(HALF TB) or 512GB an hour in bandwidth alone..
If you even got an attack that high the company you are with would of canceled you, because it would of affected other servers as it would cause many problems with network, and they would make you pay hundreds of dollars..
Let's see your graphs, I'm not saying your a liar or anything, I just think your host or you are not reading them correctly, post what you have exactly..
I'm thinking at the most you got is 80mbit/s.
I know when I was hosting you I was getting 200-400mbit/s attacks, and a few larger ones once in a while, but it's because I had a dedicated 1gbit line, I had that bandwidth but it could still affect the network traffic to other servers.
Another thing is, you can't "firewall the traffic" that is impossible to filter 800mbit of attacks with scripts or even most hardware, even $25,000 hardware can't filter that out, the only kind of hardware that can filter out attacks that massive is RIOREY which costs in the range of a quarter of a million to a million dollars, for the hardware alone, and you need the bandwidth to back it up, but it doesn't even filter all of the traffic, and the traffic is still coming into the pipe which means you will still have to keep paying the bandwidth bill. [
Hey, 1337Inj3ct0r
We better watch out for MR. elite he might take us all down with his "elite hacker skills" Oo..
He's got me shaking in my boots like iron should be.. lmao
Oxide said:
Correct, you can't make anything to stop any decent size attacks, maybe something like a booter or alike, but software/scripts will never work in real life flood attacks and 99% of the time it will actually do more harm than good, because it will require ram/cpu to work, which when a attack/flood happens is already causing that so it's going to make the server work extra hard vs if you never had the scripts it wouldn't work 10x harder, but the main things that an attack is doing is either,
#1 It's killing the connection(pipe) It's overloading the pipe in other words, if your connection is a 100mbit connection, and they are ddos attacking with 500mbit, your connection is going to die due to the massive incoming traffic, and no matter what kind of software or even hardware it will never survive.
#2 It's killing the cpu/ram on the server by overloading it and making it work harder than it can, causing massive loads, it can use up the ram or cpu or both and it can even kill the server by making it crash because it cannot handle what is going on, by trying to respond to for example http connections, syn reply's or mutiple things depending upon what kind of attack is going on, or what is setup on the server.
You can protect your server by doing some ip table rules, which can stop smaller attacks, nothing major, and if it's overloading the pipe like #1 it will fail no matter what, but sometimes if you have a pretty fast server this can keep the server online or site online, even if it's lagged to hell, next is getting hardware but it's very expensive, some datacenters already have hardware already at the core of the network, or you can pay an extra fee to have your server protected by them, but hardware firewalls are very expensive, they cost in the range of at least $25,000 for average cisco firewall but even that $25k firewall will still die in a semi-large attack, for example all cisco firewalls that they have ranging from $25k to $100k will not be able to handle an attack of the size of 1000mbit, they will all fail, even if you have a dedicated 1000mbit line, they just are not made to withstand these types of attacks, some of them cisco firewalls can withstand attacks under 100mbit but not all of them, some can only withstand 10mbit ones.
The only type of firewalls that can withstand attacks of 100mbit to 1000mbit are RIOREY firewalls, but they even do have models that can stop/filter attacks up to 20gbit/s or 20000mbit/s.
The 1gbit riorey firewall costs $30,000-$40,000, the 10gbit riorey firewall costs $80,000-$100,000 and the 20gbit riorey costs over $300,000 which is the only firewall in the world to withstand and filter an attack of this size.
Riorey is the only firewall that is out of the box ready, you put it at the core of the network and it can protect hundreds of servers, it monitors usage and patterns of traffic, and when "bad" traffic or spikes in traffic happen it kicks in and starts filtering the attack before it gets to your pipe(router) it doesn't work perfectly and sometimes actually blocks real traffic, but you really don't have to do anything with it, it's just ready to go, and the company can actually monitor things and do updates to stop new types of attacks, it can stop all types of attacks out there from http floods, to syn, upd, imcp, and many more, It's a really neat hardware and the software is pretty cool too, I've used the 10gbit model before on another network I was on, it really does work, and you might think it's actually a rip off or expensive but it's not, It's really cheap in the long run because it pays for itself.
If you think about it, most companies charge for ddos protected hosting, I'm not talking companies that say they have ddos protection and just null your ip address, I'm talking major companies that can actually stop it, or have riorey protection in place.
If you purchased ddos protection for 1000mbit(1gbit) ddos attacks, you can pay in average of $1,000-10,000 a month and higher.
If you purchased ddos protection for 20gbit ddos attacks you can pay in the $50,000 range plus the bandwidth costs, so you can be talking a $100,000 a month, so if you purchased that 300k hardware and you get some clients that are buying this from you, you could pay it off in a good year or less.
This was my bordem post, hopefully I have taught you guys a thing or two, and you learned something from it.
I am considering starting to post some tutorials and some of my ideas and things about attacks, malware and such if anyone is interested please let me know and I will start some topics on some things, I'd like to know what you guys want to learn about. l
This thread has been moved to the Archives section due to it reaching redundancy. This means that the thread has no use in the official section and has been moved to the Archives section.
If you feel this was done wrongly, please contact a Staff member.
If you feel this was done wrongly, please contact a Staff member.
