SeGuard DDoS Protection can mitigate most of the attack without any changes. Is a mix of static rules and dynamic filters. SeGuard, is the only premium class service that not require user customization on our DDoS Mitigation settings, you not need to close unused ports.
In addition to this standard protection we added layer 7 validation on some ports to protect customer not only from volumetric attacks, but from application attacks. If you're using our SeGuard AlwaysON mode, you not need to apply any profile, just use ports listed below and you will authomatically protected from layer 7 attacks.
IMPORTANT: We not close any ports, customers are free to stup custom ports or use service not listed here without limitations. On selected port we perform packet validation to drop any packets that not match the service. For other port we still protect customer with our premium class protection
Web Service
Ports: 80,443
Protocols Allowed: TCP
Layer 7: Yes
Packet Validation: No
Version: 1.1
Teamspeak 3
Ports: 9987,30033,10011,41144
Protocols Allowed: TCP (partial),UDP
Layer 7: Yes
Packet Validation: Yes
Version: 1.1
RUST Game
Ports: 28015,28017,28019,28021,28023
Protocols Allowed: TCP,UDP
Layer 7: Yes
Packet Validation: Yes
Version: 1.0
SA:MP
Ports: 7001,7002,7777 (partial),7990
Protocols Allowed: TCP,UDP
Layer 7: Yes
Packet Validation: Partial
Version: 1.1
Note: Full packet validation on port 7990 + tcp drop
IRC
Ports: 6660:6670,7000
Protocols Allowed: TCP
Layer 7: No
Packet Validation: No
Version: 1.0 (alpha(
Note: Full packet validation in development
Minecraft
Ports: 25565
Protocols Allowed: TCP
Layer 7: Yes
Packet Validation: Yes
Version: 1.0 (Alpha)
Note: Full packet validation on port 25565 + udp drop
If your service is not listed here you will be protected with our SeGuard DDoS Mitigation service.
IMPROVE: Help us improve our protection, if your service is not listed here, open a trouble ticket to our SOC DDOS Department and we will create a profile.
