Ok... some people have absolutely no respect for other people's hard work - not knowing that they are hurting a small time business owner versus corporations. Having said that, even attacking large corporations with DDoS is equally sick because in many cases shareholders themselves are hardworking people - who invested their life savings.
I don't see a difference between a criminal trying to break open the locked door of a family owned convenience store vs. trying to break into a individually owned server. So... why do I post this message here? Last evening I received EXACTLY 63510 attempts to login into my Asterisk server at my colo. My server is taking a GOOD BEATING - and the only thing that is happening is my logs are getting populated at a rate of 10 megs per day and bandwidth increasing. I know a number of software based firewalls for Linux, but is there any software application out there, that utilizes relatively low CPU resources, to prevent or slow down DDoS - that any of you have ACTUALLY implemented? I have a Fortigate firewall solution on another server, but those toys are expensive. I'm not ready to pitch in another large sum of money for this... but at the end if I have to... I have to. The quick fix is to allow SSH ONLY from my range of IP's - but that is only a Band-Aid solution. What is disturbing though is that these "people with no respect", are targeting my Asterisk Server. This is why it's bugging me! Your thoughts and inputs on what measures you take to protect your servers from DDoS is greatly appreciated... specially those of you who are running Asterisk for business purposes! Cheers!
