Skip to main content

DDoS protection overview

Overview of IllusionCloud DDoS protection

Every VPS and dedicated server includes enterprise‑grade DDoS mitigation at no extra cost. The platform combines transit‑level filtering, intelligent firewalling and always‑on scrubbing to keep your services online during attacks.

How it works

  • Layer 3/4 filtering: Traffic flows through upstream filtering centers with high‑capacity (terabits per second) bandwidth. Malicious volumetric attacks (UDP floods, SYN floods, amplification) are absorbed and dropped before they reach your VPS.
  • Adaptive firewall: State‑of‑the‑art eBPF/XDP technology inspects packets in real‑time and applies dynamic rules based on traffic patterns. Legitimate players/users are allowed, while suspicious IPs are rate‑limited or blocked.
  • Positive security model: The system uses machine learning to differentiate normal game or web traffic from malicious anomalies. It learns expected behaviour (e.g., typical FiveM handshake or HTTP requests) and filters anything outside those patterns.
  • Automatic mitigation: When an attack is detected, mitigation is triggered automatically without manual intervention. There is no “null route” downtime – clean traffic continues to flow through scrubbing appliances.
  • Global coverage: Multiple scrubbing locations and a total network capacity of several terabits ensure attacks are mitigated close to their source, reducing latency during mitigation.

What is protected

  • All protocols: TCP, UDP and ICMP traffic are filtered; you don’t need to configure rules yourself. Game servers (FiveM, Rust, etc.), web servers, and APIs benefit from this layer.
  • Multiple IP addresses: Each IP assigned to your VPS or dedicated server is covered by DDoS protection. If you have additional IPs, they inherit the same protection.
  • Remote DDoS protection: For infrastructures outside IllusionCloud, an optional remote protection service can announce your prefix and scrub traffic before forwarding it to your own network.

Best practices

  • Keep your services updated and hardened (firewalls, rate‑limiting and up‑to‑date software) to minimize attack surfaces.
  • Monitor your server during attacks using console access or your own monitoring tools. DDoS mitigation adds latency; expect some performance impact but your service should remain reachable.
  • If you experience targeted application‑layer attacks (e.g., HTTP floods), consider using a reverse proxy or WAF in addition to network‑level protection.
  • For high‑risk applications such as game servers, enable any built‑in anti‑DDoS features (e.g., txAdmin’s protective mode) and keep whitelists/blacklists updated.

IllusionCloud’s support team continuously monitors the network for emerging threats and updates mitigation profiles accordingly. If you suspect a complex or sustained attack that isn’t being mitigated, please open a support ticket with details (timestamps, IP, protocol) so our network team can investigate.

Back to top