I am thinking of running a website from my DigitalOcean (DO) droplet.
I understand DO has DDOS protection.
Does this protection apply (a) only when the domain’s name servers are that of DO or (b) also when the name servers are elsewhere but only the “A” record points to DO?
Thanks.
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Hi there,
DigitalOcean provides DDoS protection for its infrastructure, including Droplets, which is independent of where your domain’s name servers are hosted.
This protection is designed to mitigate the impact of large-scale attacks on the network layer, ensuring that DigitalOcean’s services, including your droplet, remain accessible during such events.
To address your specific questions:
(a) Only when the domain’s name servers are that of DO: No, DigitalOcean’s DDoS protection does not require you to use DigitalOcean’s name servers. The protection is provided at the infrastructure level, covering all droplets regardless of where the domain is managed or where its name servers are hosted.
(b) Also when the name servers are elsewhere but only the “A” record points to DigitalOcean: Yes, the DDoS protection will still be effective. As long as your website’s “A” record points to a DigitalOcean droplet, the traffic to your website will benefit from DigitalOcean’s network layer DDoS protection. This is because the protection is applied to the infrastructure that hosts your droplet, not the DNS service managing your domain.
However, it’s important to note a few things:
Hope that this helps!
Best,
Bobby