Hello guys (and gals),
This is my first post, after using MTIK for about 3 years now, shame on me, yes i know. I used MTIK routerOS for small deployments, offices and stuff (due to the fac that has a good price for what is able to do) but never as a router/gateway for a major project, in my case a hosting company. After one hell of a week in which we got a lot of DDoS attacks (you will see the picture attached to this post) i decided to use as a primary gataway RouterOS v6.X. In Romania we have dual band, 1- international 2-local or metropolitan. On internetional connections side, we have blackholes where we can dump the traffic, but not on the metro side, so guess what… we got a huge DDoS on metro.
Network setup:
1 - Gateway - RouterOS 6 running on a HP ProLiant DL360 (2 x Intel Xeon Quad Core E5450 @ 3.00GHz, 60 Gb Ram, 10 nicks at 1 Gbps each (3 national providers and 3 international providers - 6 Gbps total bandwidth)
2 - Distribution switch Cisco 2960 (4 of them)
2.1 - pfSense firewall (6 servers)
3 - Clients switches
and so on
We’s seen that the attack was targetet on the gateway ICMP and UDP lot’s of them so we added some simple firewall rules to block them.. and see what happens. Worked like a charm, i was abble to stop about 55 MILION packets in just a matter of minutes…It’s true i was at the edge of my resources.. however i managed to stop it.
So.. next step, get a better and powerfull server, get a two 10 Gb uplinks…deploy routeros on it… and do what we do best. It’s a miracle what you guys are doing out there, it’s easy to install, use and modify, works like a charm.
mkt.png
Waiting for the new releases and updates from you. Have a good evening and keep up the good work.
