Directory Image
This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.

9 steps for fighting against a DDoS attack in real time

Author: Haltdos Pvt. Ltd.
by Haltdos Pvt. Ltd.
Posted: May 15, 2018

Slow network performance or a single website downtime can cause serious revenue damage to any online business, both in lost sales and consumer trust.

DDoS attacks these days have become the stuff of nightmares for website owners.

If you think your business is exposed to such kind of an attack, we’d recommend you to follow these steps to protect your web resources against the different types of DDoS attacks:

  1. Verify That There Is An Attack: Find out common causes of an outage, such as DNS misconfiguration, upstream routing issues, and human error/s.
  2. Determine The Type Of An Attack: Find out the type of an attack. Is it a volumetric, protocol, or application layer attack? You can take help of DDoS mitigation service provider.
  3. Prioritize Your Applications: Make decisions in an organized way to keep your high-value applications alive. If you have limited resources and you are experiencing a DDoS attack then try to protect those applications which are crucial to your business.
  4. Ensure Your Remote Clients: White list the IP addresses of trusted remote users that require access and main list this list. Distribute the list throughout the network and with service providers as needed.
  5. Determine Source Address Options: If there is an advanced attack vector — it is impossible for your service provider to determine the no. of attack sources. Make a list of attacking IP addresses and block those IP addresses at the gateway level. Or you can also block a Geo-IP location to block the traffic coming from a specific country/city.
  6. Mitigate Application Layer Attacks: Specific application-layer attacks can be mitigated on a case-by-case basis with an implementation of DDoS mitigation solution.

Today’s attackers are targeting businesses with the multi-vector DDoS attacks such as HTTP flood, low and slow DDoS, etc.

  1. Increase Your Security Perimeter: If you are still experiencing issues then Focus on your application-level defenses: login walls, human detection, or Real Browser Enforcement.
  2. Constrain Resources: If all the previous steps fail to stop a DDoS attack on your network — simply constrain resources to fight an attack, like rate & connection limit is the last resort — it can turn away both good and bad traffic. Instead, you may want to disable or blackhole an application.
  3. Manage public relations: If the attack becomes public, prepare two statements first for the press and second for internal staff and admit you’re being attacked If your industry policies allow it and be straightforward about it.

About the Author

HaltDos is an IT Security company that primarily deals in award-winning AI-based Web Application Firewall and DDoS mitigation solutions for SME's and Large Enterprises.

Rate this Article
Leave a Comment
Author Thumbnail
I Agree:
Comment 
Pictures
Author: Haltdos Pvt. Ltd.

Haltdos Pvt. Ltd.

Member since: Apr 26, 2018
Published articles: 7

Related Articles