![[STEADFAST Services]](http://steadfast.net/shared/section.services.jpg)
XML FeedsDDoS Protection Fully Implemented
May 18th, 2007
DDoS Protection Fully Implemented
We are proud to announce that our installation of our DDoS protection hardware has been completed and fully tested. Our entire network is now 100% DDoS protected with a dedicated hardware appliance, provided by RioRey, on each and every incoming line, allowing us to protect against multi-gigabit attacks. This service is now listed with all of our dedicated server and colocation offerings and is being provided to all existing customers at no additional charge.
With the hardware in place, roughly 1 minute of a DDoS will likely get through as the hardware analyzes the data to assure it isn't legitimate traffic, but then the attack should be brought to an almost immediate halt. This hardware is not only to protect those who get attacked, but our network as a whole. Even though DDoS attacks have not been a major issue on our network, this setup should assure that they will never have a major affect on our overall network.
I would just like to clarify that by having DDoS protection it does not mean that you should encourage DDoS attacks nor does it mean that we are removing our restrictions on IRC related services or those that receive persistent DDoS attacks.
3 comments
Very useful post .Thank you for sharing this. 
Being a current customer that colo's from SteadFast Networks, THIS SERVICE IS NO LONGER ACTIVE, coming from their tech support themselves. If you are coming here because they offer DDoS protection, I would ask you to look elsewhere, because they have clearly shown they cannot hold themselves to their own standards. 
Zack W, you are correct, we no longer offer comprehensive DDoS protection. We had stopped advertising DDoS protection as a feature nearly 4 years ago now. Overall, the cost of maintaining DDoS protection at the speed we were growing was not possible, and offering such protection attracted some poor customers.Instead, we now have in place a system that will detect any large influx of traffic. This data is then presented to our staff who will manually investigate the flood and take any necessary action. If the attack is large enough we will null route the IP being attacked to assure no other customers are negatively affected by the attack. We do BGP null routing with our carriers as well, so any null route we place is passed through our carriers, meaning that traffic doesn't even touch our network then, thus preventing any congestion at the carrier or router level as well.