[nly]

What makes you think OVH could cope with a 200 Gbps DoS attack of this nature? A quick look at their services indicates they don't mention what kind of attacks they defend against, and SYN floods are some of the hardest to defend against.

[scurvy]

SYN floods are pretty easy to defend against. Most devices do SYN cookies in hardware at line rate. We run midrange devices that have thwarted 40M PPS SYN floods without a problem. I'm not bragging or anything, just offering a datapoint that SYN floods are easy to stop.

[cpncrunch]

They say they have facilities to clean 480Gbps of data, and 5Tbps of mostly spare inbound bandwidth, so their DDoS mitigation capacity is somewhere in that range (http://www.ovh.com/ca/en/a1171.protection-anti-ddos-service-...).

[scurvy]

Customer testimony on places like Webhosting Talk have cast all of those numbers into serious doubt. OVH is more likely to nullroute your IPs than it is to fight off a 300gig attack.

[cpncrunch]

Do you have a ref for that? I did quite a few searches and didn't find a single person on webhostingtalk saying they had been null-routed by OVH in the past year. Only one guy who worked for a competing hosting provider.

[scurvy]

Shut down this guy's account during an attack:

http://www.webhostingtalk.com/showthread.php?t=1467534&highl...

That said, I'm not a personal search engine. Here's a link to search results:

http://www.webhostingtalk.com/search.php?searchid=1555010

[cpncrunch]

He said OVH didn't give a reason for shutting him down, which seems unusual. Perhaps he's breaking their ToS?

OVH themselves say they protect 24/7 against DDoS attacks, regardless of duration or size.

[gruez]

480Gbps across all their datacenters. Each datacenter only has 160Gbps, and I doubt that they'll devote all of that to one client.

[cpncrunch]

They do activate all 3 datacenters. https://www.ovh.com/ca/en/anti-ddos/hoovering-up.xml