This morning at 11AM, a large DDoS was aimed at a server in our colocation facility in Santa Rosa. The DoS was large enough (1.5 million pps) to disrupt connectivity to our Santa Rosa datacenter, which would have affected access to mail and web services hosted by Sonic. The DoS was blocked by 11:07 AM, and no further ill effects should have been felt after that point.
-Jared
Now, if we could only scramble the asault team and take out the black hats! Not kidding!
Cw
Were you able to investigate who/what generated this attack? Any traceback possible? Possible reasons?
Hi Fabio,
We have contacted the target of the attack to investigate possible reasons for the attack. In terms of traceback, we don’t really have a way to look at who was controlling the botnet.
I’m curious. I’ve read words similar to “the DDOS was blocked” various times over the years.
How do you go about blocking a DDOS without shutting off access to the target?
Rob