Eligebility for free DDoS protection is dependant on location. Look for a green Anti-DDoS Protection icon next to a server for indication that it's DDoS protected.
Our automatic detection and mitigation DDoS protection provides protection from:
We work with our partners to use 11Tbps of additional network to mitigate all sorts of attacks, including TCP, UDP, ICMP, GRE, SYN, ACK and RST. Mitigation starts between 20 and 120 seconds from when the first packet of the attack is received.
To detect the attack, we use the netflow sent by the routers and analysed by our detection solutions. Each router sends a summary of 1/2000 of traffic in real time. Our solution analyses this summary and compares it to the attack signatures. If the comparison is positive, the mitigation is set up in a matter of seconds.
Depending on the attack type and size, the mitigation setup can take between 5 and 120 seconds.
The principle of DDoS attacks is overloading the services. Sometimes the provider's entire network is incapable of handling the load. Thanks to the 11Tbps additional network capacity, Rackcrate infrastructure can absorb a very high quantity of traffic during attacks, much more than the services offered by competitors.
When the attack is global, the mitigation services activate simultaneously to combine their power and absorb the traffic. Their total capacity mitigation is more than 2 Tbps. Other customers and services will not be affected at all.
Mitigation is a term employed to design the means and measures in place that reduce the negative effects of a DDoS attack. Mitigation consists of filtering illegitmate traffic and hoovering it up with the VAC, while letting legitmate packets pass.
The VAC consists of multiple devices, each with a specific function to block one or more types of attack (DDoS, Flood, etc.). Depending on the attack, one or more defense strategies may be put in place on each VAC device.