Mitigations
How to stop a DDoS attack on Nginx
Rate limiting, connection limits, slowloris mitigation, and application-layer DDoS controls for Nginx with pro...
14 min read →Blog
Attack postmortems.
Engineering deep-dives.
Practical guides from engineers who've been DDoS'd and learned from it.
All
Post-Mortem
Attack Analysis
Original Research
Engineering
Forensics
Integrations
Mitigations
Fundamentals
Tools
Comparisons
Mitigations
How to stop a DDoS attack on a Linux server
iptables and nftables rules, sysctl TCP hardening, fail2ban, and real-time detection with Flowtriq. Real commands for real attacks.
Mitigations
How to stop a DDoS attack on Kubernetes
Network policies, ingress rate limiting, HPA considerations, cloud load balancer DDoS protection, and per-node...
15 min read →Mitigations
How to protect gaming services against DDoS attacks
Practical implementation guide: network architecture, proxy setups, detection tuning, and auto-mitigation for ...
13 min read →Mitigations
BGP FlowSpec for DDoS mitigation: how surgical filtering replaces blunt blackholes
FlowSpec lets you drop attack traffic at the network edge without blackholing legitimate users. How it works, ...
13 min read →Mitigations
4-level auto-escalation: from local firewall to cloud scrubbing in seconds
Flowtriq's auto-escalation chain (iptables/nftables, BGP FlowSpec, RTBH, cloud scrubbing) explained step by st...
14 min read →Mitigations
How to detect a SYN flood attack on your game server
Game servers face targeted SYN floods that exploit high-PPS traffic patterns. Detect them using kernel counter...
10 min read →Mitigations
BGP FlowSpec vs RTBH: which mitigation method is right for your network
A detailed comparison of surgical FlowSpec filtering and destination blackholing. When to use each, real confi...
11 min read →Mitigations
How to configure ExaBGP for RTBH
Complete guide to ExaBGP setup for programmatic RTBH route injection. BGP session config, community tagging, d...
14 min read →Mitigations
iptables and nftables rules for DDoS mitigation: when and how
Production-ready firewall rules for SYN floods, UDP floods, ICMP floods, and connection exhaustion. When local...
14 min read →Mitigations
SYN flood detection without a cloud WAF
You don't need Cloudflare or AWS Shield to detect SYN floods. The data you need is in /proc/net/snmp and your ...
8 min read →Mitigations
UDP flood mitigation: techniques that actually work
UDP floods are the most common volumetric DDoS attack. Here are proven mitigation strategies from iptables rul...
11 min read →Mitigations
BGP blackhole routing: RTBH for DDoS mitigation
When a volumetric DDoS attack threatens your entire network, BGP blackhole routing stops the flood at the netw...
10 min read →Mitigations
iptables rules to survive a SYN flood while you wait for upstream mitigation
When you're under a SYN flood and upstream mitigation is still 20 minutes away, these iptables rules can buy y...
7 min read →Newsletter
Attack analysis in your inbox
One email a month. Real attack postmortems, detection techniques, and engineering insights. No marketing fluff.
No spam. Unsubscribe any time.