I was under constant SYN floods and volumetric UDP flood attacks that were so large that even when all the source IPs got collected into a large iplist and blocked by iptables, it would still shut me down, because it was simply sending more than my NIC could handle. Sometimes the ISP would blackhole my IP during that happening, to protect his own infrastructure.I wrote a BPF XDP filter that rate limits packets in an efficient way, so they get dropped before they even enter the ring buffer and contributing IPs temporary blocked for an hour.I already experienced multiple DDoS attacks since deploying it and i wouldn't even have noticed them, if i wouldn't have checked with bpftool if something got blocked.They go into nowhere.
>>107891744just turn yourself in, anon
I also got constant ddos on my router. Weird thing is I kept getting it even after changing IP address. It had no effect on my internet so I just ignored it but I do wonder how they kept ddosing me after IP resets.
>>107891793Or at least I thought it was a ddos, don't really know exactly. I don't have the logs anymore so I can't check.
>>107891744What did you do to cause this, anon? You must have at least one clue, right? This is what the police would ask btw
>>107892037I moved a website off cloudflare and shittalked cloudflare.I also went to the cloudflare support forum and wrote an essay about how cloudflare sucks.
>>107891744If your link is getting flooded then even the world's most advanced firewall will not save you, let alone something like eBPF or a custom DPDK filtering application.
Update: it was my Blink sync module and my Smart fridge microwavator.
