Network security knowledge: basic network attack and defense of DDoS attacks

DDoS attack is very mysterious to most people, but is one of the most common network attacks.

1. What is a DDoS attack?

Distributed denial-of-service attack

The so-called distributed denial-of-service attack anti DDOS refers to multiple attackers in different locations attacking one or several targets at the same time, or an attacker controlling multiple machines in different locations and utilizing these machines to attack the victim at the same time.

Because distributed denial of service network attack can make us a lot of computers at the same time to suffer from the attack, so that the target of the attack can not be normal use, therefore,virtual Machine cloud the attack once appeared will lead to a lot of large-scale website are unable to operate the problem in a timely manner.

Let's take a simple chestnut to help you understand this

What do bullies do when they try to shut down a rival store across the street?

Bullies pretending to be regular shoppers fill the competitor's store and refuse to leave while real shoppers can't get in ;)

Or always have a go at the sales staff,vpshosting making it impossible for the staff to serve customers properly;

It can also be for the operators of the stores can provide a false information, the store's up and down busy after the problem is found to be a blank, and ultimately run away from their real big customers, losses.

In addition, bullies sometimes can't do these bad things on their own and need a lot of help.

Therefore, when a website is under DDoS attack, users can't access it because the server is busy with thousands of other access requests.

2.Classification of DDOS attacks

Distributed denial of service attacks can be categorized differently based on different classification criteria, and in general, this class of attacks is broadly divided into seven categories:

Classification based on the degree of automation, this classification is mainly divided into three types: manual DDoS attacks, semi-automated DDoS attacks, and automated DDoS attacks.

Based on the classification of system and protocol weaknesses, this classification is mainly divided into four types: flooding attacks, expansion attacks, attacks that utilize protocols, and malformed packet attacks.

Classification based on attack rate, based on rate can be categorized into sustained rate and variable rate attacks.

Classification based on impact, based on the impact aspect can be categorized into attacks that completely collapse the network service and reduce the network service.

Classification based on the intrusion target, based on the intrusion target can be divided into bandwidth attacks and connectivity attacks.

Classification based on the attack route, based on the attack route can be categorized into direct attack and recurring attack.

Based on the classification of attack features, from this perspective, DDoS attacks can be classified into two categories: attack behavior features can be extracted and attack behavior features cannot be extracted.

cloud server hk: Efficient, Reliable, Global Connectivity for Seamless Operations.