What is DDoS (Distributed Denial of Service)?
Distributed Denial of Service (DDoS) attack is an attempt to interrupt the traffic of a target victim via itsí server, web service or network by flooding the system or the infrastructure with a large amount of Internet traffic using compromised computers or devices as sources to attack.
The aim is to overwhelm the system or infrastructure beyond the level of capability and then bringing down the network and services.
Types of DDoS Attack
Volumetric Attacks - Produce large volumes of traffic and causes the bandwidth to be flooded entirely, creating a jam on traffic which triggers the actual traffic to be not able to flow in or out of the victim site.
Protocol Attacks - These attacks consume the processing capability of network resources such as servers, firewalls by targeting networks with malicious connection requests.
Application Attacks - A more advanced attack that develops weakness in process-to-process communication and user services to utilize limited resources like disk space and memory by opening to connections and starting process and transaction.
Symptoms of DDoS Attack
The symptoms are very much like other issues we have on our computers, such as virus attacks and slow Internet, that can hard to tell without a professional diagnosis. These symptoms such as:
- Slow access to server applications and files, either locally or remotely
- A long-term inability to access specifics websites
- Excessive amount of spam emails continuously
How to Prevent from DDoS attack
Buy more bandwidth
This can ensure to have enough bandwidth to handle spikes in traffic that may be caused by malicious activity.
Build redundancy into your infrastructure
In order to make your Server less prone to DDoS attacks, ensure to spread your server across multiple data centres with a good load balancing system to distribute traffic between them.
It is recommended that these data centre in different countries make it difficult for an attacker to succeed. This would prevent from attacker being able to attack all your Servers.
Configure your network hardware against DDoS attacks
Configuring your network hardware such as firewall or router to prevent the Servers and IPs from being attacked with large volume by dropping incoming ICMP packets or block DNS responses from outside your network.
Protect your DNS servers
It is a good idea to place your DNS server in a different data centre behind the load balancer and important to have redundancy as well. Moving to a cloud-based DNS provider that offers high bandwidth and multiple point-of-presence in the data centre across the globe may be a better solution.