Does my VPS have DDoS protection?

Your VPS includes built-in DDoS protection (Distributed Denial of Service), which automatically activates when suspicious or excessive traffic is detected. This protection is designed to mitigate large-scale attacks that may affect the availability of your VPS.

For security reasons, it is not possible to share all technical details or activation thresholds of the protection system, especially in cases of large-scale attacks that may target multiple servers simultaneously.

---

Small attacks

In low-intensity attacks — where limited bandwidth or small data packets are used — the protection system may not automatically activate. If such an attack has minimal impact on your VPS performance, no direct action is required. However, it is strongly recommended to monitor network traffic closely, as even minor attacks can degrade server performance.

Moderate attacks

When a moderate DDoS attack occurs, the DDoS filtering system is automatically activated. Malicious traffic (DDoS traffic) is identified and filtered out, while clean, legitimate traffic continues to reach your VPS. This ensures that your websites and services remain available to real visitors.

Large-scale attacks

In the event of a large-scale DDoS attack (several Gbit/sec or higher), the system may automatically nullroute your IP address. This means that your IP is redirected to a non-existent route, causing all incoming packets to be dropped. While your IP is nullrouted, it will be temporarily unreachable from the Internet until the attack subsides and normal routing is restored.

This measure applies only to massive DDoS attacks. In the case of a simpler DoS attack (Denial of Service), the system will instead block or isolate the attacker's traffic. Attacks up to several Gbit/sec are automatically filtered without requiring full isolation.

---

How to prevent or reduce the impact of a DDoS attack

• Use Cloudflare or a similar service. These services mask your website’s real IP address, making it harder for attackers to target your server directly. If you have already been a victim of a DDoS attack, it is recommended to use a new VPS, as the previous IP address may still be known to the attackers.
• Avoid using the same IP address for your VPS and hosted websites. This allows you to change a website’s IP easily without affecting the underlying server infrastructure.
• Host high-risk applications or services (such as Minecraft, IRC, or Teamspeak servers) on separate IPv4 addresses. In case of an attack, you can isolate only the affected IP without disrupting other services running on the VPS.
• Avoid hosting too many websites on a single IP address. While technically possible, this increases the likelihood of DDoS attacks and potential blacklisting if one of the hosted sites is compromised or used for spam.

The DDoS protection included with your VPS operates automatically and adapts to the type and intensity of the attack. However, proactive monitoring and proper configuration remain the most effective ways to maintain the stability and availability of your server.