hmm ok, i get it. So what is exactly being ddos'd. Is it on ip level or application level? or both? Too much ip traffic to handle or is the server bogged down by requests?
I think some of the problems started with the botnet owners unintentionally bogging down the servers with requests, but all the actual intentional DDoSes are based on sending large amounts of data as far as I know.