I'm an Edpnet subscriber currently suffering the effects of the DDOS. It's annoying to say the least. Last year's DDOS attack was relatively simple, pointed at the DNS servers. Simply using other dns servers was good enough to get back online. Edpnet also joined NaWas [0] at that time, a non-profit for ISPs to be able to redirect all trafic through big pipes when needed to deal with large attacks. Because the current attacks are rapidly shifting targets, it's a game of cat and mouse to properly filter the ddos.
In practice, this means that some sites such as google and youtube keep working, but other services might not be available. It is extremely annoying when all of a sudden AWS api calls time out, or a Teams or Slack call suddenly drops to very low bandwith, and then drops entirely. I've had to resort to my phone's hotspot multiple times in the last few days.
Yes, I pay for SLA, but what's the point in that? I've got priority in case of a cable break, and failover to 4G connection, but that's no use if the upstream is congested.
The sad part is that the attack works because it it a small isp, 45000 customers. [1] It is the main reason I'm a customer, they offer good service for great prices. Kudos for not paying the ransom. If the attacks continue for much longer, I will probably switch to the bigger, more expensive, less customer friendly isp. I'm happy to support a local company instead of a big multinational coorporation. But if my clients can't depend on me when working from home, I've got no choice but to pick the ISP with the bigger and more expensive pipes.
If you give them kudos for not paying the ransom, it's also worth considering not switching away from the small ISP you chose because they were doing things right. Otherwise they might as well have not done the morally right thing and given y'all better service.
Though, of course, I do understand your conundrum. Perhaps there's some middle ground, where for anything that really needs the uptime you have a (mobile) fallback? Still annoying if there are outages on non-essential lines but perhaps better than forcing them into paying the criminals.
I agree, maybe my wording about the situation could have been better. I fully support them in their handling of the attacks. Paying the ransom would in no way guarantee the attacks would stop, now or in the future.
My phone's 4G hotspot works (via another provider), but it does have limits of course. I don't mind paying a bit for extra data, but there is a limit to the amount of extra time and effort I can spend on this problem. I can't keep apologising indefinitely to my clients about bad audio/video calls if none of my coworkers have the same problems with their ISP.
Sibling comment did have a good idea: to tunnel my traffic through an OVH instance. A great opportunity to try out Wireguard.
For now I'm just redirecting my traffic through a VPN that exits at OVH, and everything's fine although I'm now geolocated in France, so a few things are blocked or don't work as they should.
But the edpnet/OVH link is unaffected by the ddos, so that's a solution.
In practice, this means that some sites such as google and youtube keep working, but other services might not be available. It is extremely annoying when all of a sudden AWS api calls time out, or a Teams or Slack call suddenly drops to very low bandwith, and then drops entirely. I've had to resort to my phone's hotspot multiple times in the last few days. Yes, I pay for SLA, but what's the point in that? I've got priority in case of a cable break, and failover to 4G connection, but that's no use if the upstream is congested.
The sad part is that the attack works because it it a small isp, 45000 customers. [1] It is the main reason I'm a customer, they offer good service for great prices. Kudos for not paying the ransom. If the attacks continue for much longer, I will probably switch to the bigger, more expensive, less customer friendly isp. I'm happy to support a local company instead of a big multinational coorporation. But if my clients can't depend on me when working from home, I've got no choice but to pick the ISP with the bigger and more expensive pipes.
[0] https://www.nbip.nl/en/nawas/
[1] https://datanews.knack.be/ict/nieuws/edpnet-al-dagen-getroff...