DDoS Protection

aarroisi · August 5, 2024, 12:04am

Hi, my app recently got DDoS-ed from bad actors. What’s the best way to implement DDoS protection for an app running on Fly? Let’s say I don’t want to rely on something like Cloudflare, since it’s a multitenant app and my users don’t always use CF or any kind of protection in their custom domains (of which they can add in my app). I’m looking for a solution that can protect at the http or network level, so the attack doesn’t even hit my app.

What about adding a nginx layer (its own app) and then route the traffic to the real app? Do you think it’s a viable option?

kaz · August 5, 2024, 7:11pm

Nginx could work if detecting bad actors is straightforward (e.g. accessing obviously non-existent URLs).

If “it doesn’t even hit my app” is not a hard-requirement, you can use Arcjet.

system · August 12, 2024, 7:12pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Current state of fly.io DDOS protection	2	224	August 7, 2024
DDoS protetion	3	1656	May 1, 2023
Throttling and DDoS protection for fly app	8	1741	March 28, 2023
Tips for setting up Cloudflare with Fly Questions / Help	1	943	May 29, 2021
Firewall Whitelist Questions / Help	6	1476	May 1, 2023

DDoS Protection

Related topics