DDoS Attack Information
If you're experiencing a DDoS attack on your regify provider, you may want to know if and how regify can help you on this issue.
Please understand that a DDoS attack is an attack on your company and technically an attack on your infrastructure. DDoS attacks are not caused by regify products or how regify designed or developed the product. It is an attack on your infrastructure.
Technically, a DDoS attack might affect
- your available bandwidth.
- your hosted machine capabilities (CPU, memory, space).
- your technical devices like routers, firewalls and other network devices.
As a consequence, the regify provider might be unreachable, not responding (very slow or timeouts) or displaying error messages. This very likely affects both the web interface and the sending and receiving of regify messages (regimail, regipay, regibox etc). It does not matter if the user is using his mobile or PC devices. regigates may be affected, too.
Unfortunately, we as regify
- do not have control about your infrastructure.
- cannot help you identifying the root cause of the inavailability of a system.
- cannot help you identifying the attacker.
- cannot provide you help to bring back your systems.
Suggestions
You should contact your hosting provider immediately. Many hosting providers offer DDoS Mitigations or DDoS protection. Maybe they can help you by
- implementing a DDoS-mitigation-appliance.
- use their firewalls to only allow specific country IP network ranges (eg only your country).
- temporarily providing more ressources (CPU, bandwidth etc).
Please note the tips to shutdown and restart your provider appliance.
Prevention
In fact, if the attack is big enough, there is not really a lot you can do to protect you from an outage. But there are service providers claiming to protect your servers from DDoS attacks. We do not have experience in that field but you might want to check the services of vendors like Cloudflare, Google Shield, Acamai, Ribbon, Netscout, myraSecurity (Germany) and many others.
In general, the more bandwith you have and the more CPU and RAM you have, the more effort is needed for an attacker to bring down your systems.
Best if you are prepared! Consider collecting a few information before you get attacked:
- Prepare a list of the usual IP ranges of your country to easily create an IP network whitelist.
- Consider other countries as well, if you have customers from there.
- Consider collecting specific fixed IP addresses of your customers, too. For example regigate IP addresses or bigger regibox customers with fixed IP addresses. So you can explicitely whitelist them.
- Have your internet providers or hosters phone numbers at hand so you do not need to google them in case of an attack.
- If you already decided for a service provider for DDoS protection, ensure to have their phone numbers available, too.
- Make sure to have access to the regify provider console even if SSH is not possible.
- Take notes of the way to access the VM consoles and any needed logins/passwords.