24/7 DDoS Emergency Hotline
Login / Register

Web DDoS Protection

Web DDoS Protection

Smarter, Faster, Safer

As an integral part of Link11’s Web Security Suite, Web DDoS protection operates on an always-on
principle. It’s completely automated and responds to potential online threats around the clock.

Global MPLS network
with 43 PoPs

Multi-terabit
global network

Guaranteed protection
bandwidths of up to
1 Tbps

How the Link11
DDoS Web technology works

Link11’s Web DDoS protection solution is based on Layer 7 reverse proxy technology. This means that a client’s requests are
redirected via a system based on a web resource, which then initiates the connection to the actual destination. This redirection is
done by changing the corresponding DNS record of the web application to the IP address provided by Link11, thus
providing an additional layer of protection.
DDoS-Web-technology-works

Instances

To ensure increased security, the Web DDoS technology is divided into multiple instances, each of which acts as its own
dedicated IP address. Each instance is operated in a Link11 scrubbing center to better counter a large volume attack.
instances

TLS termination

Our technology also effectively protects Link11 customers from HTTP-based attacks (Layer 7).

For this, a separate domain-specific x.509 certificate must be uploaded within the web DDoS protection and the special TLS termination must be switched on. This allows all TLS connections to be analyzed and decrypted. Traffic is then checked for DDoS attacks, re-encrypted and finally forwarded to the Origin server.

DDoS detection and protection measures

As soon as a certain number of accesses overwhelms and paralyzes the backend system, we call it a DDoS attack.
Our DDoS protection includes various measures that prevent this condition from ocurring:
01
Monitoring:

The technology checks the response times and HTTP 50x error messages reported by the backend and automatically launches defense algorithms if anomalies are detected.

02
Scoring system:

The defense mechanism works internally, using a scoring system that evaluates the anomalies and, once a certain threshold is reached, starts blocking IP addresses with conspicuously high scores.

03
Dynamic:

The points allocation and the resulting implementation of the blockade work dynamically and range between 300 and 76,200 seconds per IP address.

We look forward to getting in touch with you.

Our Cyber Resilience experts will help you to optimally protect your company.
* Mandatory Fields

    About you:
    Your contact details:
    Your company:
    Other information:
    Please prove you are human by selecting the Cup.

    For more information on the processing of personal data, please see our privacy policy.