DDoS Mitigation Services | Remote DDoS Protection Services

DDoS Protection For Servers and Remote Networks

DDoS Protection for servers has become an essential service for many online industries, including gaming (Minecraft, Counter-Strike, Spigot etc), healthcare and e-commerce websites. With Psychz True DDoS Protection, we can mitigate layer 3/4 attacks and effectively protect against the hard to detect layer 7 that attack applications using only a tiny amount of bandwidth. By default, all bare metal servers come with free 20 Gbps protection. If you need a larger package, our DDoS protection packages for dedicated servers offer mitigation up to 500Gbps.

Remote DDoS Protection is also available for clients who require mitigation services at their facility. Using GRE tunnels, we can divert traffic to our network for inspection, analysis, and filtering to ensure the high availability of your online business or project. To learn more about our DDoS mitigation services, please get a quote or call us today.

Enterprise Level Protection requires many layers or and heuristic approaches to mitigating attacks. Over the past decade, we've seen the emergence of a new threat to global networks and have deployed an extensive 5 Tbps global network as a way of handling large attacks. Once the attacks reach our network, we apply Access Control List Rules ( ACLs) blocking traffic at the edge of our network. The second stage of mitigation involves inspecting and analyzing each packet, ensuring no malicious, service disrupting traffic makes it through to our clients

When it comes to protecting our customers, we’re not limited to just our facilities. We can employ the use of GRE Tunnels / Reverse Proxies. Using GRE Tunnels, we can remotely protect clients in facilities across the globe by re-routing malicious attack traffic to our scrubbing centers where we only send off clean traffic to its destination.

Distributed Global Scrubbing Operation

Having fourteen globally distributed scrubbing POPs throughout the world allows our system to mitigate attacks when they are detected.

Furthermore, multiple options of scrubbing POPs will allow remote DDoS protection clients to experience lower latency. For example, if your data center or POP is in Texas, you will pick our POP closest to you to reduce any unwanted latency. We provide a very robust capacity of network peering.

Using our services from IP transit, Colocations, Dedicated servers, our customers have an ease of mind that we can defend against any attack. Anycast DDOS & Services has allowed our customers to deliver content closest to the POP as well as mitigate attacks at the same time.

Scrubbing Centers

DDoS Mitigation Feature

Mitigation

Our service offers protection against all known attacks (Layer 3/4/7) with a guaranteed clean bandwidth based on tier selection. Baremetal servers come with free 20 Gbps DDoS protection, and higher tier options are available.

Capacity

Multi-10G capacity across all POPs is being added regularly to meet growing demands. Currently, we have a total network capacity of 5 Tbps, and we are capable of mitigating attacks up to 500 Gbps.

Detection

We utilized heuristic-based DDoS detection, which enables complete defense against all known and "zero-day" threats. Traffic goes through multiple stages of scrubbing and filtering before it arrives at the destination.

Network

We utilize high-performance scrubbers & analyzers across all data centers. With Dual-stack IPv4/IPv6 enabled Static Layer 3 policies (ACL's), we can define filters globally both on Edge and Network layer. With the help of Anycast, we can deliver traffic with low latency and almost no packet loss.

Frequently Asked Questions

DDOS for Remote Networks

1

How does remote DDoS work?

Remote DDoS is for client's with a remote data center or host where they own the IP space. Instead of relocating the IP space, they can announce their IP into our network where we will scrub the dirty traffic and deliver the clean traffic over GRE tunnel back to your server or network.
2

What is required to get setup with remote DDoS protection?

You will need your own IP space, ASN, and a router that is able to do BGP (Border Gateway Protocol) and GRE (Generic Routing Encapsulation) tunnels. To get setup, we'll need an LOA (Letter of Authorization) authorizing the announcement of your IP block (prefix) on our network.

Prefix is an IP block assigned to you from ARIN. LOA are Letter of Authorization where you will specify the prefix we are allowed to announce. The LOA must include your company letter head, ASN number, and a statement that says AS40676 is allowed to announce your prefix.

3

Is remote DDoS only for a network or can client's also protect a single remote server?

Your welcome to announce small prefixes such as a /24 which can be for one specific server or simply high risk clients who are under attack.
4

Is there a minimum requirement for a client to use remote DDoS protection?

Yes a minimum prefix of /24 along with a router that allows BGP and GRE is required to get started.
5

Is there is a cost associated with announcing and withdrawing prefixes for remote DDoS?

When a tunnel along with GRE is built, you do not need to announce prefixes all the time. You can wait until an attack occurs where you can announce the prefix to initiate the mitigation process. note you can only announce a /24 which is the smallest a BGP route allows for a provider to recognize that prefix. There are no charges when announcing and withdrawing prefixes. The flexility is in the network operator's decision.

Distributed Global Scrubbing Operation

Frequently Asked Questions

DDOS for Remote Networks

How does remote DDoS work?

What is required to get setup with remote DDoS protection?

Is remote DDoS only for a network or can client's also protect a single remote server?

Is there a minimum requirement for a client to use remote DDoS protection?

Is there is a cost associated with announcing and withdrawing prefixes for remote DDoS?

Get a Quote