What is a DDoS Attack?
A DDoS attack (Distributed Denial of Service attack) is a type of cyber-attack where multiple compromised systems, often distributed across different locations, flood a target server, service, or network with an overwhelming amount of traffic.
The goal is to make the target unavailable to legitimate users by exhausting its resources, such as bandwidth, CPU, or memory.
DDoS Protection in our Datacenters
Our datacenters at Hetzner provide an internal DDoS Protection, protecting the platform by utilizing Arbor and Juniper hardware. The system identifies and filters out malicious traffic through various layers of protection, which can recognize and respond to specific attack types such as DNS reflection, SYN floods, and UDP floods.
This protection does not affect normal traffic. The system continuously
improves its defenses by analyzing attacks and optimizing filters to ensure robust protection for web applications and infrastructure.
Cloudflare
On top of our internal DDoS protection, we use Cloudflare as a gatekeeper to prevent malicious traffic even to get to our datacenters. Cloudflare's DDoS protection leverages its vast global network to provide always-on, automated defense against DDoS attacks of any size.
Using machine learning and layered protection, Cloudflare identifies and
mitigates attacks in real-time without disrupting legitimate traffic. It ensures high availability and performance during an attack, making it a robust solution for safeguarding websites, applications, and networks.