The problem isn’t solved by IP filtering alone. Even if they did this… The internet provider above blizzard still has to take the brunt of the attack and I doubt they have the backbone to do that when up to a terabyte per second of packet data is flooding in.
its the volume of packets that kills the server not really the bandwidth. .each packet has to be processed before you can filter it out.
Lol nice mustache 
DHCP as a protocol functions the same on your router as your ISP.
Yes, your ISP can set varying lease durations at their discretion (or even terminate them at will)
You can do the same thing in the management page of your router.
Your computer is a DHCP Client
Your router is both a DHCP Client (to your ISP) and DHCP Server (to your network)
I don’t know what you mean by “different Administration rules” but it’s really not that different. Your computer/router both squawk out a broadcast to request a DHCP Address, and the DHCP Server that resides on the subnet will respond (or the request will be forwarded if configured on an enterprise router)
OP doesn’t know how IP’s work. lmao
I appreciate your insight into what DHCP is, but we’re not talking about how the protocol works. The issue has nothing to do with how DHCP assigns IPs out to your computer, nor does it have anything to do with how your ISP provides you an IP.
Users were conflating the issue, and my responses were such as to explain at a high level to others that were less technical, that simply blocking IPs based on a random location, is not effective at administering against DDOS attacks, as these attacks are usually distributed, and behind Proxies/VPNs.
What I mean by different administration rules, is specifically that. An administrator has set rules for your expiration, or how long the ISP has determined your service usually retains that dynamic IP.
Two years ago, Cox used to rotate Public IPs issued to your connection every two weeks, as an example. This is an Administration Rule, or Policy they have setup.
Forest for the trees.
DHCP as a protocol functions the same no matter what type of IP Address you are using. There are differences between RFC 1918 addresses (private) and the public ones, but not in regards to DHCP.
You can download software and run a DHCP Server off your computer if you wanted, and have it give out any IP Address that you want. Of course unless configured properly you might have some connection trouble 
OP googles DDOS attacks, thinks he knows more than actual cybersecurity professionals who make a living dealing with these sorts of things.
I don’t think you know how IPs work.
So let me ask you this - why do we not see larger attacks like this more frequently? Considering it takes one person to conduct attacks from which there is no defense until they’ve already caused damage… One would imagine this would be more regular, you wouldn’t have billion dollar internet companies if they could all wipe out their competitors with attacks like this… there must be reasons it’s not more widespread…
This is just ridiculous, honestly
How do you white list 7 million IPs? If each packet needs to be checked the router will crash.
People think this is something a script kiddie runs on their computer too, it’s a bit more complicated than that though.
DOS = Denial of service
DDOS = Distributed denial of service (aka hundreds/thousands of computers if not more)
Basically someone has a botnet of compromised computers/servers that they use to assault the victim server in a coordinated fashion. This is a large scale attack especially to take a service as big as WoW down.
lol…Oh lord the things people come up with…
This is possibly the worst suggestion I’ve ever heard and there have been a lot in the recent attacks.
What about those that use vpns to play?
nah generally your dynamic… you can request static ips from you isp but i believe they charge extra
Why would you need a VPN to play?
Well in all honesty I don’t really care about you guys… whitelisting just my server would be enough…
But maybe you could have different login servers depending on what realm you’re playing on… so each realm has it’s own login server, which only needs to keep track of its own characters… so maybe you come up with a system for recognizing who’s a valid customer and who’s a bot… the first time you log into the game, you get a new auth token stored on both client/server… then the next time you login, you send the old auth-token so they know its you, they give you a new auth-token, and so forth…
This is an inside job, its a scam, we all got mugged out from the very botton of our pockets, deal with it, big corp… wake up
Privacy.
Playing from a restricted country.
Downloading the nuditystuff but want to play wow at 500ms in the meantime while your connection slowly pecks away at your downloaded content.