Hacker News new | ask | show | jobs
by grishka 1786 days ago
Is DDOS such a frequent occurrence that you would be down "constantly"?
3 comments
wombarly 1786 days ago
Yea our sites used to be DDOSed daily for 2 months. We're now getting a DDOS once or twice a week.

Edit: Some numbers, most of them are between 2k-5k requests per second. But we had some with 20k-30k rps.

link
busymom0 1786 days ago
Do you solve it using the "Under Attack" mode on CF where it shows the "redirecting in 5 seconds" msg? I am curious how CF takes care of the DDOS.
link
wombarly 1786 days ago
Cloudflare detects the DDOS and will block it, notifying you by email. We almost never use the Under Attack Mode unless it's actually affecting us.

The biggest thing we do to help ourselves when we're under attack is making sure that the pages being ddosed (homepage, etc) is being cached by them. There will always be some requests that CF doesnt block, so the cache ensures they get served by them.

link
busymom0 1785 days ago
> The biggest thing we do to help ourselves when we're under attack is making sure that the pages being ddosed (homepage, etc) is being cached by them.

What about pages which can't be cached? For example an updated comment feed? How would you deal with dynamic data?

link
wombarly 1785 days ago
People who DDOS sites usually attack the homepage.

If they attack a dynamic page, check if you can cache them for 30 or 60 seconds. Pretty close to real time.

If you have cookie based authentication for those pages, its going to be difficult to cache them at all though. Which is where SPAs come in useful since auth is client side.

link
busymom0 1785 days ago
For those curious, I am reading more about it here:

https://www.cloudflare.com/en-ca/learning/cdn/caching-static...

link
scrollaway 1786 days ago
DDOS gets more frequent when it becomes effective. Then it's just a matter of keeping you down.
link
MrStonedOne 1786 days ago
Yes
link