A Distributed Denial of Service (DDoS) attack is where many geographically disparate, compromised hosts attack a single target. The flood of data sent to the target overwhelms one or more system resources (CPU, bandwidth, available connections etc.) thereby denying service to legitimate users of the targeted system. These types of attacks can quickly bring a target network or system to its knees, are almost impossible to prevent and are becoming more and more common.
In line with Net Logistics’ goal of continually improving the service we provide to our customers, we have tested and deployed a comprehensive DDoS protection and mitigation solution.
If Net Logistics detects a DDoS targetting a system within our network, the traffic to this target IP is diverted to our DDoS protection system. The system discards the DDoS traffic and the “clean” traffic is allowed to continue to the destination server, which remains online despite the attack. This DDoS mitigation is typically enabled for 24 hours and if the attack is still ongoing, the process continues for another 24 hours and is repeated until the attack is over. Once the DDoS ends, the routing is automatically restored to normal.
All of this is done completely transparently and without any action on the part of the customer.
As an interesting aside, shortly after deployment, this system underwent a “trial by fire” whereby a multi-gigabit DDoS was directed at our official cPanel update server. The attack was quickly mitigated without interruption to the service of Net Logistics customers or the target system!
Whilst I would love to be posting photos about how awesome our “team building” days (ok, physical exertion days) are, given how (non?)photogenic our staff are, you’ll just have to take my word for it that we’re a competitive, fierce bunch that don’t let the weather get in the way of playing sports. Yes, sports, actual sports, and we have quite a few star achievers across indoor soccer, basketball and table tennis. Their abilities in said sports however do not stand up to their technical abilities (so rest assured, they won’t be changing careers to be a professional athlete just yet).
Now to get into the meat of what this post is about, that being updates that are being performed across various platforms.
On the billing side of things, some of you may have noticed the roll out of our new system, which is primarily used for domains at this moment. This new system is being actively developed and used in the management of domains and we will be rolling out updates soon to incorporate the existing billing accounts and packages across, however this functionality does require a large amount of time and planning to migrate people across and ensure a smooth transition.
On the technical side of things, many of our Kinetic, Momentum and Dedicated cPanel clients will start to see the rollout of the new WHM interface, which has changed somewhat more drastically compared to previous releases. The new interface has been updated based on usability that is especially useful for tablet devices and you can see more at cPanel (http://docs.cpanel.net/twiki/bin/view/AllDocumentation/WHMDocs/WHMUIChanges
There will also be some updates coming to the main Net Logistics website, with an updated service status page in the works, providing updated information publicly compared to the existing method of forum announcements. We are also looking into mailing list announcements for both technical notices as well as providing hosting sales to our existing clients.
Now to get back to work and look into more up and coming tech.
Disclaimer: no tech were hurt in the production of these team days (much).
Net Logistics has recently taken possession of a brand new, high spec Dell PowerEdge m915 blade server. The blade is built around a four socket motherboard with thirty two DIMM slots. Add in a couple of hard drives and as you can see from the following photo, there isn’t much room for anything else.
The server provided to Net Logistics came with thirty two 8GB RAM modules and four AMD Opteron 6180 SE Processors, with each CPU having twelve cores. So the question was – what were we going to do with this beast of a server with 48 CPU cores and 256GB of RAM? As you can imagine our technical team were just itching to get their hands on this and put it to work! We decided that we would use this server primarily for testing rather than deploying any live systems on it. We also decided that we would be testing three different layers on this server – hardware, virtualisation and applications.
Net Logistics is primarily an Intel environment and the vast majority of our servers run on CPUs produced by Intel so we were really interested in testing the AMD CPUs in this system to see how they fared. Obviously we were interested in testing the raw performance of these CPUs but our primary concern was to test their heat output and how well the server could dissipate the heat which was produced. Due to the density of the server componentry and the minimal space that this allowed for good air flow we certainly had our doubts.
We employed a variety of benchmarking and stress testing software across both Linux and Windows and we maxed out all 48 cores for up to 48 hours at a time. What we found was that no matter what we did, we could not get CPU temperatures to rise above 61°C and all other chassis temperature readings were well within acceptable limits. We were pleasantly surprised!
Since this server has been built by Dell from the ground up with virtualisation in mind we wanted to test a variety of Virtualisation software to see how it performed. We ended up testing VMWare ESXi, Microsoft Hyper-V, Citrix Xenserver and KVM (for Kernel-based Virtual Machine), which is the default virtualisation technology used in a number of major Linux distributions. The testing that we did on Hyper-V on this server ended up playing a direct role in our eventual adoption of this technology for our new “Ascend” Windows VPS Packages: http://www.netlogistics.com.au/hosting/vps/windows/
This server now and for at least the near future will be used for testing operating systems and applications. Once our virtualisation testing was complete we decided that this server would be running Citrix Xenserver in order for us to continue with our on-going in-house testing. It is currently running numerous virtual machines across a variety of different operating systems and we are using it to test many different classes of software and services such as hosting control panels, database servers, HTTP servers, high availability, clustering and many more.
This on-going testing will allow Net Logistics to keep abreast of the latest software developments and assess their potential to both provide our clients with a wider array of services and to improve upon the services we have already implemented.