Skip to main content

General information about DDoS protection

Last update:

DDoS attack is a distributed denial-of-service attack.Sends a large number of requests to the attacked service in order to reduce its performance or disable it completely.

All Selectel products are by default protected against Selectel DDoS attacks.Protection is provided at the network and transport (L3, L4) layers.Incoming traffic is analyzed, flows of unwanted traffic from the external network are blocked.

Learn more about the types of DDoS attacks at different levels and how to protect against them in the Selectel blog article How to protect your server from DDoS attacks.

Additional security can be selected to enhance the security of the service.

Select additional protection

Selectel has services available based on solutions from DDoS-Guard and Curator partners.

All DDoS protection services can be activated only for IP addresses that are used in Selectel infrastructure.

Once the service is activated, all traffic to the protected address is sent to the partner's filtering system. The traffic is analyzed and cleaned, and then redirected to the protected server in Selectel infrastructure.

To pick up additional protection:

  1. Determine which layer of the OSI network model needs to be protected from DDoS attacks.
  2. Choose the DDoS protection service that is right for you. that's right for you.

1. Determine which layer of the OSI model needs to be protected

Network and transport layer protection (L3, L4)Level defense
applications (L7)
The object of the attackBandwidth exhaustion, network infrastructure disruptionDisruption of network connections due to vulnerabilities in basic data transfer protocols (TCP/IP)Attacking the logic and data of websites and applications
Reflection methodAnalyze traffic headers at the L3 and L4 level, identify problems on network equipmentTraffic filtering based on analysis of user behavior and network packet parametersApplication-specific traffic filtering at the level of HTTP/HTTPS, DNS, etc. application protocols

2. Choose a DDoS protection service

Selectel Protection
(enabled by default)		DDoS-Guard L3-L4 protectionDDoS-Guard site protection and accelerationCurator's defense
Network layer protection (L3, L4)✓ (incoming traffic only)
Protection at the site, application level (L7)✓*

* You can additionally protect your application from targeted attacks by using the WAF Curator.