Over the last few days, I've been stressing out on how to reject traffic from DOS attacks, in order to prevent from being charged mega $$$.

However, I've been told that it's only possible to reject traffic in order to reduce the server load (on the server level using software such as iptables), rather than rejecting traffic in order to not get billed for the excess traffic.

Do you agree that it's not possible to prevent/reduce bandwidth charges using software (on the server level), due to DOS attacks?

If it's not possible to reject traffic in order to reduce the bandwidth charges, what options do I have if a new attack occurs just about everyday?

Any suggestions would greatly be appreciated.

that is correct, rejecting it on the server end will not reduce your bandwidth bill by much.. sure you wont be sending ICMP replies back to the ppl dossing you, but their packets will still be coming in and reaching your server.

If a new attack occurs everyday, your best bet is to host with a advanced dedicated provider who can provide you with custom firewall/router control. They will work with you to block the traffics. However, obviously this method cost some money.

A cheaper alternative, especially your site doesn't need the quality, is to just buy a link, and then when an attack comes, it will situate your link, jack up server load, slow down regular page browing, so on. But you won't have to pay extra.

Peter

Once again

The simplest effective way is unrouting of a targeted IP.


Regards