There are only two ways to mitigate a DDOS. Expensive hardware (both on the network and server side) and well written firewall rules.
If I had to guess I would say that the firewall rules are already fine and this is purely a matter of money. P99 is already hosted by a company that offers DDOS mitigation. However, as with all things, you get what you pay for. It's likely that if the P99 staff payed out another $5k-$10k a month the attack would be fully mitigated.
What we have right now is the best performance we can get with the resources available.
It would be interesting to see a packet capture from the server side though if any sensitive information could be stripped.
|