2021 DDoS Issue

The Beer Padawan said:
Nigga you just posted a switch. That means Null will still have to buy an ISR and the ASA, both of which should support 10G.

Guess how much a 10G capable ASA costs?

View attachment 2309943
Click to expand...

Guys, you do not need to spend 25k on a Fortigate or 90k paying the Cisco toll to get into a decent 10GbE router…. a Fortigate 500E is 10G capable, and costs about 5-7k. The 100F is even cheaper, but it has a lot less memory and I wouldn’t be comfortable recommending to handle 10GbE of DoS protection against some cashed up spergs who either know how to use LOIC, or just pay someone to know what that acronym is. 1100E is way overkill and Josh does not want a 2RU router using up his colo bux.

Josh does not need a UTM/IPS subscription. DoS protection, advanced routing, session-based NGFW, all comes with the firmware, no license required. Also, IPS only really protects against CVEs, it won’t protect you against bad website design.

He’s gotta keep it simple, as he’s (probably) paying per RU for colo. If it was me, here’s my layer 2 design (not firing up visio unless I’m on someone else’s dime):

7FCCD665-1230-4B77-8BAB-E41E07312834.png


For bonus points, if you got a 10GbE switch that is reasonably shallow, you could mount the switch in the same RU as the router (router front, switch rear), meaning you’ve got an extra RU to use for one extra server, so you’re ready to store the sheer volume of memes the next time Ralph decides to Gunt™ someone and post video proof to own the ayylawgz.
 
  • Informative
  • Like
  • Agree
Reactions: HackerX, TVStactic, bebop and 13 others
I don't really know shit about networking, what did it mean when I tried to access the .onion version of the site and it said something about a hashring?

Also Godspeed Null in thwarting retards and all that, but what's the difference between a DDoS and a DoS?
 
  • Like
Reactions: Dork Of Ages
Right Wing Boomer Squads said:
Guys, you do not need to spend 25k on a Fortigate or 90k paying the Cisco toll to get into a decent 10GbE router…. a Fortigate 500E is 10G capable, and costs about 5-7k. The 100F is even cheaper, but it has a lot less memory and I wouldn’t be comfortable recommending to handle 10GbE of DoS protection against some cashed up spergs who either know how to use LOIC, or just pay someone to know what that acronym is. 1100E is way overkill and Josh does not want a 2RU router using up his colo bux.

Josh does not need a UTM/IPS subscription. DoS protection, advanced routing, session-based NGFW, all comes with the firmware, no license required. Also, IPS only really protects against CVEs, it won’t protect you against bad website design.

He’s gotta keep it simple, as he’s (probably) paying per RU for colo. If it was me, here’s my layer 2 design (not firing up visio unless I’m on someone else’s dime):

View attachment 2310258

For bonus points, if you got a 10GbE switch that is reasonably shallow, you could mount the switch in the same RU as the router (router front, switch rear), meaning you’ve got an extra RU to use for one extra server, so you’re ready to store the sheer volume of memes the next time Ralph decides to Gunt™ someone and post video proof to own the ayylawgz.
Click to expand...
Looking at the Fortigate 500E, it's the one used in one of my client's racks (I think. Same exact interface panel.) They seemed very happy with it. 2 of them for failover, supporting around 800 workstations and VOIP clients.
 
Last edited:
  • Informative
  • Like
Reactions: TVStactic, Dork Of Ages, JoshPlz and 2 others
Null said:
Guy on Twitter:
"Haha I am DDoSing the Kiwi Farms!"

Kiwi Farms:
View attachment 2310136


When people want attention, maybe don't endlessly fawn over it and give them attention. Jesus Christ it's so cringe. What? Are you going to DOX this guy and BRING HIM TO JUSTICE? No, he's some random fucking guy. Probably lives in Russia. Probably doesn't give a fuck about you. You don't even know if it's him, you just take the tweet and freak out over it as if there's some fucking gem of truth you're going to gleam from it. As if it's not just trolling or shitposting to begin with.

It never, ever matters who or why when dealing with this. Never, ever, under any circumstance, should "WHO" or "WHY" be in your head. It is a non-factor. The only factor is "how", as in, "how to fix it".

It's so fucking easy to trigger you retards sometimes. Random cunt makes a Twitter account and posts a picture of a random booter targeting Kiwifarms.net (WHICH IS THE DDOS PROTECTED URL) and it shows up over, and over, and over, and over again on every page of two different threads as DOZENS of people take the bait. Fucking shut up already.
Click to expand...

The word is glean.
 
  • Informative
  • Thunk-Provoking
  • Agree
Reactions: TVStactic, In Memoriam, Style and 1 other person
Null said:
Guy on Twitter:
"Haha I am DDoSing the Kiwi Farms!"

Kiwi Farms:
View attachment 2310136


When people want attention, maybe don't endlessly fawn over it and give them attention. Jesus Christ it's so cringe. What? Are you going to DOX this guy and BRING HIM TO JUSTICE? No, he's some random fucking guy. Probably lives in Russia. Probably doesn't give a fuck about you. You don't even know if it's him, you just take the tweet and freak out over it as if there's some fucking gem of truth you're going to gleam from it. As if it's not just trolling or shitposting to begin with.

It never, ever matters who or why when dealing with this. Never, ever, under any circumstance, should "WHO" or "WHY" be in your head. It is a non-factor. The only factor is "how", as in, "how to fix it".

It's so fucking easy to trigger you retards sometimes. Random cunt makes a Twitter account and posts a picture of a random booter targeting Kiwifarms.net (WHICH IS THE DDOS PROTECTED URL) and it shows up over, and over, and over, and over again on every page of two different threads as DOZENS of people take the bait. Fucking shut up already.
Click to expand...

Perhaps the picture shows because its targerting Kiwifarms.net ? Its less outrage and more of moaning that man quality is determined by his enemies and Man we have some shitty enemies they are throwing shit at us that even Russian Conscripts charging with shovels would call pathetic.
 
  • Thunk-Provoking
Reactions: TVStactic, Meiwaku and Dork Of Ages
Cavalier Cipolla said:
Are you sure they are not clandestine even in India? That is, unless their business is registered as something else.
Click to expand...
Not sure about ddos operations, but I know a lot of those tech support scams are run out of normal call centers there. I'd assume it's similar .

Still a better occupation than ebegging.
 
  • Like
Reactions: Dork Of Ages
Null said:
Yes hello we're being ddosed and it sucks because I can keep the forum up but not the sister services unless I figure out what to do about this homosexuality. This post will be technical (to the best of my ability, I am a retard) so if you don't care you don't have to read this (but it's going to be expensive so pls gib crypto).

View attachment 2307414

The attack looks like this. When this is happening, the switch/router (CCR1016-12G) CPUs slam to 100%. Routing stops and management becomes hard to deal with. I'm trying to look into a way to deal with this but I'm having difficulties. I believe it's a TCP/SYN flood that works not through bandwidth saturation but by trolling the device.

We need to upgrade our line to a 10Gbps anyways. I'm putting in an order for a second 1Gbps line but that's not what I want long term. The CCR1016 does not have 10Gbps ports.

So I'm looking for is a 10Gbps solution. I am told that at 10Gbps I will need a switch and a router. Suggest idiot-proof hardware.
I'm also looking for advice on how to shape traffic so that I can always access the router.

A 10Gbps line is pretty fucking expensive ($750/mo god damn). I'm willing to splash out of the silver fund if it's going to work long term but this is the last thing I can really afford before there's problems.

The upside is, once we have 10Gbps and the new device (FINALLY coming in this week) we can set up a PeerTube instance and do video hosting. Exciting times.
Click to expand...
Why don’t you host on AWS?
 
  • Autistic
  • Optimistic
  • Thunk-Provoking
Reactions: Tealeaf, LMFAOForgotPw, JoshPlz and 7 others
Born in Summer said:
View attachment 2309374
if this isn't a joke please include this in the random.txt
Click to expand...
Those people don’t know what a Holocaust is. Come back when you’re forced to wear a Pink Triangle. They make it sound like only transgender people are talked about. Here’s a hint, it’s not because you’re trans, it’s because YOU ARE A SHITHELL! Like Jordan Peterson, Ethan whatever right winger he is, and Amberlynn Reid.
 
  • Like
Reactions: Dork Of Ages, Discourteous Discourse and UnsufficentBoobage
Can anybody link me a mirror of Mio Honda explains why being LGBT is normal? (But it actually insults them the entire time). That was a good video and I sent it to a friend but it was taken down before he could watch it.
 
  • Autistic
Reactions: Meiwaku and Mountain Dew
You must log in or register to reply here.
Back