Skip to main content

General information about DDoS protection

Last update:

A DDoS attack is a distributed denial-of-service attack. During an attack, a large number of requests are sent to a service to reduce the performance of the service or to shut it down completely. Learn more about DDoS attacks and protection methods in the Selectel blog article How to protect your server from DDoS attacks.

All Selectel products are protected by default. To increase the security of the service, you can activate additional protection. For more information on selecting a protection service, see the Select additional protection subsection.

Types of protection

Default protection

Selectel DDoS protection is automatically enabled for all IP addresses in the Selectel standalone system

Protection is provided at the network and transport (L3, L4) layers.Incoming traffic is analyzed, flows of unwanted traffic from the external network are blocked.

Additional protection

For IP addresses that are used in Selectel's infrastructure, it is possible to activate protection services based on solutions from partners:

Incoming traffic is sent to the partner filtering system, where it is analyzed and cleaned, then the cleaned traffic is redirected to the protected server in Selectel infrastructure.

Select additional protection

  1. Determine the purpose of the defense.
  2. Choose the DDoS protection service that is right for you. that suits your needs.

1. Define the purpose of the defense

Network and transport layer protection (L3, L4)Level defense
applications (L7)
The object of the attackBandwidth exhaustion, network infrastructure disruptionDisruption of network connections due to vulnerabilities in basic data transfer protocols (TCP/IP)Attacking the logic and data of websites and applications
Reflection methodAnalyze traffic headers at the L3 and L4 level, identify problems on network equipmentTraffic filtering based on analysis of user behavior and network packet parametersApplication-specific traffic filtering at the level of HTTP/HTTPS, DNS, etc. application protocols

2. Choose a DDoS protection service

DDoS-Guard L3-L4 protectionDDoS-Guard site protection and accelerationCurator's defenseStormWall network defenseStormwall Site Protection
Network layer protection (L3, L4)
Protection at the site, application level (L7)* **

* You can additionally protect your application from targeted attacks by using the WAF Curator.

** You can additionally protect your application from targeted attacks with a WAF StormWall.