Skip to main content

Understanding ILShield Appliance

## Overview
`ILShield` is IllusionCloud’s proprietary anti‑DDoS appliance designed for game servers and latency‑sensitive applications. It filters malicious traffic in real time while preserving legitimate traffic flows. The appliance sits upstream of your server and inspects every packet at layers 3, 4 and 7, using custom filters tailored to specific game protocols.

## How ILShield works
- **Layered filtering:** ILShield deploys both network‑layer and application‑layer filtering. It enforces IP/TCP/UDP protocol correctness and uses deep packet inspection to block malformed packets and known attack signatures.
- **Game & app profiles:** Each supported game or application has a specific profile that knows how to distinguish between legitimate voice, state synchronization and event traffic. This allows ILShield to drop unwanted floods without affecting gameplay.
- **Amplification & reflection protection:** The appliance mitigates common amplification vectors (DNS, NTP, CLDAP, etc.) and defends against SYN floods, UDP floods and fragment attacks.
- **Automatic scaling:** ILShield leverages IllusionCloud’s backbone to absorb attacks of hundreds of gigabits per second, dynamically scaling with attack volume.

## Features
- **Optimized for online games:** Supports MOBAs, MMORPGs, FPS and more. Handles voice, state sync and player events while filtering per‑game profile to reduce false positives.
- **Low latency:** Deployed close to the edge using Anycast IPs to ensure high availability and minimal latency for players.
- **Protocol validation:** Enforces correct IPv4/IPv6 and transport‑layer headers and drops malformed or non‑standard packets used in exploits.
- **Customizable rules:** Allows custom whitelists/blacklists and rate limits per port or protocol.
- **Monitoring & reporting:** Real‑time dashboards show attack statistics, clean traffic volume and filtered packets.

## Deployment & integration
To enable ILShield on your service, submit a request via support. The team will provision a protected IP or announce your existing IP through the filtering network. You then update your DNS or routes to direct traffic through ILShield. For on‑demand protection, you can activate mitigation only during an attack. Always ensure your game server or application is configured to listen on the protected IP/ports.

## Best practices
- Keep your server patched and follow the security baseline guidelines (updates, firewall, strong authentication).
- Avoid exposing unnecessary services; only open ports required by your application.
- Use TLS/HTTPS for web interfaces when possible to protect against layer‑7 attacks.
- Monitor performance and contact IllusionCloud if you observe packet loss or latency spikes.

Back to top