This is where things can get tricky for consumers. We don't advertise our capacity because most of our clients are on shared environments, such as website and virtual private server hosting. To note, our website and virtual servers are on their own isolated environment.
We use Corero SMARTWALL for DDoS Mitigation (
https://www.corero.com/product/smart...os-protection/) and we have a capacity of 150gbps per Corero SMARTWALL. We currently have 2 units.
As our products are in shared environments, this protection is shared. For example
User A has a 30gb attack
User A is filtering this attack
This leaves 120gb of protection left for B-Z customers. (queued)
A lot of our protection is on the network EDGE however, mostly L3-4, only sophisticated L3-4 will pass through to the scrubbing stations and then back to the server. We do offer L7 protection, but it is very limited.
Unrelated to DDoS attacks:
For our shared hosting environments we have a powerful exploit scanner (coupled with ClamAV) that actively scans for exploits/shell scripts based off of public and our own private signatures. This scan is ran every 12 hours and it's also scanned as files are uploaded. Every 24 hours the list of quarantined and/or suspicious data is analyzed by a team member to confirm it's an actual threat to avoid any false positives in our detection. If it's clean, we'll create a regex signature to prevent the occurrence in the future. Every shared client is also in an isolated environment.
All backups are taken off-site and can only be accessed by our team members.
All VPS/Dedicated Server Images are LATEST renditions.
Windows ISO's for VPS are modified with firewall hardening instead of a barebone install
I hope this answers your questions, if you have anything else please reach out directly to me on Discord; Project#6365