DOSarrest's DDoS protection service has evolved over the last 10+ years to handle the largest and especially the most sophisticated attacks, we have a fair bit of experience after all.
DOSarrest's DDoS protection service is a fully managed security service. What does that mean to you ? It means you don't have to ever login if you don't want to. Our SOC will take care of any configuration changes you want, tell us what you want to accomplish and we'll do the rest, usually within 10 minutes. Should you like to control things yourself, by all means login and take charge, our customer portal is second to none, very responsive and very intuitive, allowing your changes to be active in seconds.
Our DDoS protection service is comprehensive in every sense, when it comes to protecting websites. We stop any and all DDoS attacks. The truth is that 95% of all attacks on websites are actually pretty small but are very sophisticated layer7 attacks, that will take your website down just as fast as a mega volumetric attack but they're harder to detect and stop. We take care of these as well. How do we do it ? We don't utilize any off the shelf DDoS mitigation hardware or application firewall hardware and never have. We have developed our own software that enables us to create multi-tiered complex rules to combat any attack, this means attacks that have never even been seen before, we can stop on the spot.
The service operates by allowing customers to redirect by DNS their URL's/ Domains to a DOSarrest VIP(Virtual IP), once this is done all traffic will flow to one of our globally distributed scrubbing centers where it will be scrubbed of any malicious traffic and then we will forward the clean traffic to the customers' origin server wherever it may be. The customer's origin server IP is kept completely hidden from all Internet visitors and therefore cannot be attacked directly.
Cloud Based Layered Protection
We employ a layered approach to DDoS mitigation comprised of 3 major layers plus A Web Application Firewall(WAF) layer on all of our globally distributed nodes. All customers websites use all nodes simultaneously, this allows us to chop up any mega attacks into smaller bites and gives customers a performance boost at the same time, by caching some or all of their content around the globe.
The layers are best illustrated in this graphic and video.
Layer 1 as shown above is accomplished with the help of our upstream providers where we have strategically placed filters inside their backbones. Layer 2 is done on our routers and load balancers. Layer 3 is done with our in-house developed software which we have developed and re-developed over the last 11 years, this is the layer where we stop the most sophisticated layer 7 attacks. At this level we can create any security and/or performance feature in a matter of minutes and deploy it for any customer right away or choose any of the ready-made, available features in our portal and deploy it in seconds.
We have tried to make our DSS customer configuration area as intuitive as possible. We have seen many other's DDoS protection configuration portals and some are just an endless panel of options of things to enable or disable, some of which have nothing to do with website security or performance. We have tried to make things as easy as possible for our customers. We have developed what we call "features" there are 2 types of features, Security and Performance features. All you have to do is select an area of your website where you would like to apply a feature, which could be at the VIP level, the webserver level or a particular URI that you may wish to define. Then apply the feature to the level you have chosen. It's that simple, no guess work on what or where something will affect the operation of your website. Should you require a feature that is not listed in our feature choices, no problem, tell us what you want and we'll make it for you, usually on the spot within minutes and make it available.
In addition to the features mentioned above there is one other major security mechanism that is very useful, which is ACL's (Access Control List). Customers can white list by IP address certain areas of their website by predefining who's allowed in and deny all others. This is most frequently applied to sensitive website URL's like /admin-login, predefine which IPs can access this URL and deny everyone else.