If using a small script like citadel or DDOS deflate, when a real DDOS hits, it should atleast counter and block some IP's before the server ip gets nulled? Or is this entirely dependant on the networks router protection?
It seems to me, the network protection actually null routed it before the 1minute allocated time that ddos deflate runs? (once per min)
Network said screw off, not waiting for your shitty software protection to risk it, time for null route?
If so, fine with me, I just don't know what else to do to help mitigate attacks, I've got iptables, deflate, all ports dropping expect the ones I need (prob useless), but yeah........
I'm also willing to pay for any bandwidth charges by my host, I feel so bad to be honest...