10Gbps VPS: Not a solution to DDoS

Here at HostHatch, we offer 10Gbps VPS. It is common that people sign up with these server in hope for better DDoS protection. However, even if the port speed is 10Gbps, it is still sensitive to different type of attacks. There is a huge difference between 10Gbps normal traffic and 10Gbps attack traffic. It is important to know that an attack has many other factors than the term bits per second (bps). You must also consider the amount of packets per second (pps) and other kind of technical aspects.

There are network flood attacks that is large in terms of bits per second (e.g, a 2Gbps UDP flood). It is a common mistake to think that the only and best way to measure an attack is in bits per second (bps), and the higher the number of bits per second is, the more serious is the attack - this is sometimes not the case. For instance, a 100Mbps UDP flood with 100k pps (packets per second) is less severe than a 20Mbps TCP SYN flood with 500k pps - because the server cannot handle the amounts of packets and SYN handshakes. However, the bandwidth itself (20Mbps) is not a problem.

There are cases when the port speed can be very helpful when dealing with DoS attacks. Let's say you are only targeted with UDP floods in the size around 1Gbps, and you run a service that does not need any UDP ports to be open. You can make that attack highly ineffective by just blocking all UDP ports on your server. In this case, a 10Gbps port is much better than a 1Gbps port - because a 1Gbps UDP flood will reach and fill your 1Gbps port even if you block it at software level.

However, the type of attack we mostly see on our 10Gbps VPS nodes are TCP SYN floods and different type of application floods from a large amount of IP-addresses. A TCP SYN flood can sometimes be too small to be recognizable in bits/second graphs, but it can be millions of packets per second and cause a lot of harm.

Another factor that makes the 10Gbps VPS not suitable for DDoS protection is the fact that it is a VPS and not a dedicated solution. The VPS is hosted on shared hardware resources and on a shared connection. If you receive an attack that is big enough to affect the whole node and other customers, your server will end up being suspended. Being on a dedicated server will give you a better chance to at least keep the server up running, with just a bit of lag, while being under attack.

So - with other words: To stop serious DDoS attacks, you need real DDoS protection, not a virtual server with high connection speed.

We recommend our customers with DDoS problems, to choose a regular SSD VPS and then get the DDoS protected IP for $5 per month. This will help you to protect against attacks up to 20Gbps and 8M PPS.

Was this answer helpful?

 Print this Article

Also Read

How to re-install your VPS

To reinstall your server, you must login to the VPS control panel at https://vps.hosthatch.com...

Network and datacenter information

Information on each datacenter's information and network details can be found at...