In the first two quarters of 2020, the number of DDoS attacks almost tripled, with 65% of them attributable to primitive āload testingā attempts that easily ādisableā defenseless sites of small online stores, forums, blogs, and the media.
How to choose a DDoS-protected hosting? What to look for and what to prepare for so as not to be in an unpleasant situation?
( Ā«Ā» )
DDoS- - . DDoS , , ( -).
DDoS- , , (OSI):
- (L2),
- (L3),
- (L4),
- (L7).
, : (L2-L4) (L7). : IP-, .
3 DDoS
DDoS- (Service Level Agreement, SLA) -. :
- ?
- , ?
- - DDoS- (, , )?
, , DDoS (L3-4) . , .
! Reverse Proxy, - : , ( 1).
1.
, IP- , ā . IP- -, Ā«Ā» .
IP-
ā IP- ( ).
- Intelligence X: , , Whois, .
- (HTTP-, Whois .) , Cloudflare, IP , 3 IP- , Cloudflare.
SSL- Censys , IP- . , Certificates :
_parsed.names: AND tags.raw: trusted
IP- , SSL-, ( Ā«ExploreĀ», Ā«IPv4 HostsĀ»).
DNS- ā , . IP- , ( -) . - ViewDNS SecurityTrails.
IP- CDN, . , - IP- .
, DNS- , (dig, host nslookup) IP- , :
_dig @__dns_
, / ( , ) , Ā«ReceivedĀ».
IP- MX- ( ), .
seo.com, Cloudflare, builtwith ( / / CMS, , ā ).
Ā«IPv4 HostsĀ» . , IP- 443. , , Ā«HostĀ» HTTP- (, *curl -H "Host: _" *https://IP_).
Censys , .
DNS https://securitytrails.com/dns-trails.
DNS CloudFail, . .
, IP -. ā .
-. , DDoS-.
-
- ( 2).
:
1.1. ;
1.2. ;
1.3. , ;
1.4. Ā«Ā» .
2.
DDoS Gbps, . - ? Ā«Ā» ? , , . - Reverse Proxy ( ). , DDoS- (. 1). - , .
- ( ) DDoS OSI ( 3).
3. DDoS
. - .
! , .
, . , , , ( , .).
, - , . DDoS- Ā« Ā».