Hi, On Mon, Apr 29, 2013 at 1:30 PM, Stephen Wilcox <[email protected]> wrote: > The CDN/"DDoS cleaners" simply do it by having vast amounts of capacity > globally generally distributed into autonomous nodes. Akamai for example has > many terabits of capacity on the Internet plus hundreds of nodes installed > directly into access networks. On top of this they deploy sophisticated DNS > load balancing to shift traffic around as demand / attacks dictate. > > It sounds fancy but in reality if you have a few terabits of traffic the > mitigate options become numerous.. its just an economy of scale, but one > that exists for a limited number of content providers.. >
Bingo. An interesting read about 'how' they work is http://blog.cloudflare.com/the-ddos-that-almost-broke-the-internet and https://www.cloudflare.com/ddos (though it is a little self congraduatory). Alex
