- DDOS is a major concern, and something I am still researching (and open to suggestions on). I have several potential providers, but am unsure that any of them could provide DDOS prevention in any capacity.
Throw
pfSense in front of the servers.
Thanks. It's that easy, huh? I'll definitely have to do some reading/experimentation on pfsense.
I setup a pfSense box at my house running 10/100/1000 nic [motherboard/lan (private)] and an 10/100 nic [pci/wan (public)], 1GB DDR3, 4x i5, 80GB HDD (for squid).
Had one of my buddies DDoS me with 2 servers (1Gb/s each) from a DC totaling 2Gb/s, my home network maxed out at 300Kb/s but I could still browse websites and talk on messenger.
pfSense had blacklisted his IP leaving me with a slight lag but still able to view sites like youtube without a hitch because of how I had caching/squid setup.