Score:-2

Using OVH VPS as a shield to dedicated machine

bd flag

I am having few dedicated machines in few hosting companies which either do not offer DDOS protection or their protection is awful, i've been contacting few hosting companies as well as friends and got a suggestion about using OVH VPS as first layer of connection or a VPN.

So members who want to access server on my main Dedicated machine would go trough my VPS first which in case of a ddos will just block further connection but will protect the current connected users.

I am interested if this is good solution and if yes is there any valid tutorial i could follow into making this happen

ru flag
Won't help because a DDoS is partly flooding of the pipe - your VPS will still be pipe-flooded and your dedidcated machine still has an external facing network I assume so it can be pipe-flooded too and overload the OS' stack and cause outages. This type of protection isn't really 'effective' to protect your systems in the long term, if the provider doesn't provide DDoS protection or uses poor protection I'd consider moving providers instead.
ru flag
Also, this is more a questino for network engineering not Ubuntu as this is only very very VERY tangentially ubuntu related
Nemanja Rankovic avatar
bd flag
Thank you for your suggestion, OVH does have a good protection but they can also be taken down with a little stronger attack, that is why i though that this type would protect as a 1 wall in front of the dedicated machine
ru flag
it wont protect against a true DDoS attack. if the stronger attacks happen your "VPN" is still on the same aggregated link and your VPN link is overwhelmed. And you still get DDoS'd
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.