- Joined
- Nov 14, 2012
Yes hello we're being ddosed and it sucks because I can keep the forum up but not the sister services unless I figure out what to do about this homosexuality. This post will be technical (to the best of my ability, I am a retard) so if you don't care you don't have to read this (but it's going to be expensive so pls gib crypto).
The attack looks like this. When this is happening, the switch/router (CCR1016-12G) CPUs slam to 100%. Routing stops and management becomes hard to deal with. I'm trying to look into a way to deal with this but I'm having difficulties. I believe it's a TCP/SYN flood that works not through bandwidth saturation but by trolling the device.
We need to upgrade our line to a 10Gbps anyways. I'm putting in an order for a second 1Gbps line but that's not what I want long term. The CCR1016 does not have 10Gbps ports.
So I'm looking for is a 10Gbps solution. I am told that at 10Gbps I will need a switch and a router. Suggest idiot-proof hardware.
I'm also looking for advice on how to shape traffic so that I can always access the router.
A 10Gbps line is pretty fucking expensive ($750/mo god damn). I'm willing to splash out of the silver fund if it's going to work long term but this is the last thing I can really afford before there's problems.
The upside is, once we have 10Gbps and the new device (FINALLY coming in this week) we can set up a PeerTube instance and do video hosting. Exciting times.
The attack looks like this. When this is happening, the switch/router (CCR1016-12G) CPUs slam to 100%. Routing stops and management becomes hard to deal with. I'm trying to look into a way to deal with this but I'm having difficulties. I believe it's a TCP/SYN flood that works not through bandwidth saturation but by trolling the device.
We need to upgrade our line to a 10Gbps anyways. I'm putting in an order for a second 1Gbps line but that's not what I want long term. The CCR1016 does not have 10Gbps ports.
So I'm looking for is a 10Gbps solution. I am told that at 10Gbps I will need a switch and a router. Suggest idiot-proof hardware.
I'm also looking for advice on how to shape traffic so that I can always access the router.
A 10Gbps line is pretty fucking expensive ($750/mo god damn). I'm willing to splash out of the silver fund if it's going to work long term but this is the last thing I can really afford before there's problems.
The upside is, once we have 10Gbps and the new device (FINALLY coming in this week) we can set up a PeerTube instance and do video hosting. Exciting times.
