The only way to prevent a DDoS attack is to be offline.
Sincerely,
Admiral Adama of the Battlestar Galactica
PS. I warned you about the cylons.
6 Likes
Your PSA is false 
1 Like
I rate this post two skeletal thumbs up.
Can’t prevent it, but shouldn’t they be able to mitigate it by renting from microsoft or amazon?
Not really. Firewalls, VPNs etc undermine the function of game servers. I invite you to source your dissent.
Microsoft owns Xbox Live which has been hit by DDOS attacks, there is no way to defend against this unless you take the servers offline.
2 Likes
Valve has implemented anti-DDoS stuff that apparently works pretty well.
Microsoft doesn’t have the whole Azure service dedicated to xbox live, it wouldn’t make much sense as a business to do that.
Rumor was these servers are being hosted by Amazon.
Totally invalidated. No proof. Just rumor. I don’t even remember where I heard it.
What I would’ve thought is in the years since the last bad DDOS from (WoD?) they would have the anit-DDOS in place already. And kept up to date. ?
Latency, privacy, data integrity, and Bliz intellectual property may be compromised when involving third parties to mitigate.
Latency is the biggest issue.
1 Like
I assumed they’re already renting from one of those two companies already.
Provider attack I’m hearing…attacking providers to servers possibly.
New level of lame…
There are methods of mitigating DDoS attacks.
Here are two examples:
Physical hardware in-line (Arbor Networks) that will leverage a scrubbing center when playbooks are executed.
Dispersion. Spreading out an attack to, as an example, Cloudflare’s massive network (node load balancing) all but nullifies most attacks.
Sure latency is added, but it’s not as bad as you think.
Edit: Blizzard can solve this issue - it’s all about corporate politics and making the right infrastructure decisions.
Edit: Context… I work for a major fortune 500 that is targeted monthly. The scale of the attacks ranges, the largest attack being 430GB/s. We’ve spent a lot of money to prevent/mitigate attacks, hopefully Blizzard goes to the drawing board on Monday and figures it out - I have faith.
1 Like
Did you cut and paste that from a DDoS protection advert? Anyway.
You are now saying you can mitigate, which I never claimed you couldn’t.
PSA stands.
However, it appears its an ISP assault not a direct server assault.
I’m sorry what?
No I didn’t copy and paste, I am a network engineer.
Short version: stop getting malware
My sincere apologies.
You should write adverts. That was in English, even.
How quickly do you think Blizzard and providers can reset BGP, firewalls etc?
1 Like
They’re (Blizzard) being vague with their messaging and I don’t see any reports of the major ISPs experiencing anything that would resemble an attack. This would lead me to believe that, without major ISPs affected, I can successfully use a VPN to mitigate the issue MY ISP is “having” which I can’t … I highly doubt this is an ISP issue, convenient scapegoat though.
Edit: Lets not forget, two hours before this “DDoS attack on ISPs” Blizzard was trying to solve for a realm stability issue. It’s on their twitter in plain text 
Aren’t attacks reaching upwards of 1TB? From my understanding those are near impossible to stop.
The only attack that I’m aware of that was at or over 1TB was the attack on Github, which they successfully mitigated.