CL2-Win10 taking DDOS from over 3000 source IPs

Stephen

Stephen

US Operations
Staff member
We are trying to stave off a rather large attack, on a shared IP website.

We don't want to take the shared IP down of course but as of yet the more IPs we block, the more that come.

We are working to stop it by any means however. It is "legit" looking web requests, just by the millions....not malformed packets or to a differnt port that can be easily blocked.
 
Target site found and it is going to be DNS redirected at least temporarily.
 
We are having the shared IP blocked to all incoming traffic for 15 minutes, we don't have a lot of choice at the moment :(
 
Dedicated IP sites are still up, but shared IP sites will be down. We are working to get it back ASAP but the sources are so diverse we are not getting much aid from upstream as it is coming from trojan infected PCs from all over the world, many in the US. They don't really allow to block this many upsteam and blocking them locally is not really working as even blocked they are still hitting the network non stop.
 
The Shared IP is not blocked now, but still the attacks are coming very strong.
 
While the attacks are still ongoing for some of the older attackers, new attackers are not joining as the cannot resolve DNS.
This is helping a lot to resolve the problem.

We tried to keep all sites up as much as possible, at this point shared IP sites should be up and running, if you have problems please report them, there is a minor chance that due to the sheer number of connections it may make some slowness, but it is going down continually as the attacks fade away, and are blocked as they continue.
 
The increase was due to some actions of the CP account holder it seems. I am trying to get in touch with them but communications are a bit slim.
 
Got in touch with the CP holder now...but need to again take the shared IP to block state, should be about 5 minutes.
 
oh shared IP has been back up for a long time now, did not do much good this time :(
 
You must log in or register to reply here.
Back
Top