How do we protect us against DDoS Attacks?

book reader icon
1 Minute
facebook logo gray
linkedin logo gray
mail logo gray
How do we protect us against DDoS Attacks?

What is a DDoS Attack?

A DDoS attack (Distributed Denial of Service attack) is a type of cyber-attack where multiple compromised systems, often distributed across different locations, flood a target server, service, or network with an overwhelming amount of traffic.

The goal is to make the target unavailable to legitimate users by exhausting its resources, such as bandwidth, CPU, or memory.

DDoS Protection in our Datacenters

Our datacenters at Hetzner provide an internal DDoS Protection, protecting the platform by utilizing Arbor and Juniper hardware. The system identifies and filters out malicious traffic through various layers of protection, which can recognize and respond to specific attack types such as DNS reflection, SYN floods, and UDP floods.

This protection does not affect normal traffic. The system continuously
improves its defenses by analyzing attacks and optimizing filters to ensure robust protection for web applications and infrastructure.

Cloudflare

On top of our internal DDoS protection, we use Cloudflare as a gatekeeper to prevent malicious traffic even to get to our datacenters. Cloudflare's DDoS protection leverages its vast global network to provide always-on, automated defense against DDoS attacks of any size.

Using machine learning and layered protection, Cloudflare identifies and
mitigates attacks in real-time without disrupting legitimate traffic. It ensures high availability and performance during an attack, making it a robust solution for safeguarding websites, applications, and networks.

Last update 3 months ago