Not all hosting providers offer DDoS protection. In my case I would probably need to find myself a solution for my VPS against this kind of attacks.
I read a useful documentation with a list of open source DDoS prevention systems.
Not considering those that are not free to use like FastNetMon, or those that seem specifically designed for Apache, like NGINX (I am not using Apache but Puma as a Ruby gem for a Ruby on Rails web application), or again that are primarily meant to monitor ssh connections, like fail2ban, I am considering to try ddos-deflate or HAProxy.
For HAProxy there are updated deb packages, however it is not a mere protection against DDoS, but a more complex piece of software with many functions.
ddos-deflate is specifically designed to block a denial of service attack, having however at first glance a slower development pace than HAProxy (I counted one maintainer and one contributor), and a less responsive or active support service.
I wonder if any of you have experience with either HAProxy or ddos-deflate and would like to share points of view or suggestions.
