So you can also scrub it yourself in your network … assuming you have enough upstream capacity to deal with it. Arbor TMS for example does this and does it very well but extremely expensive.
For Prolexic type cloud services, it’s all done via BGP anytime I looked into it.. and as of a few years back there was limitations on how much traffic you could offload. It’s a “pay as your attacked” type model where you pay X per Gb/s of attack traffic … it’s for all traffic, not just websites…. From: Af [mailto:af-boun...@afmug.com] On Behalf Of TJ Trout Sent: Thursday, July 9, 2015 12:28 AM To: af@afmug.com Subject: Re: [AFMUG] Denial of service mitigation How's that going to work? Route all of your traffic to them first by VPN? I think that's just for websites...? On Wed, Jul 8, 2015 at 8:57 PM, Seth Mattinen <se...@rollernet.us <mailto:se...@rollernet.us> > wrote: On 7/8/15 7:48 PM, Andreas Wiatowski wrote: Wondering if anyone has a magic answer to DDOS mitigation beyond “buy more bandwidth”? Other than having excess bandwidth to absorb it or null routing the target IP upstream, there's DDoS scrubbing services like Prolexic. ~Seth