You cant. This is at the federal level and feds.. arean't going to get into it. Not to mention to find the root of a DDoS... is practically impossible. However here are some things Ive found out from reading.
"These type of DOS attacks won't be resolved until IPV6 is implemented. In the mean time every network in the world to needs to block traffic from leaving their network with a source IP address that is not on their network. This can prevent their network from being used as the base of attack. If all networks did this, then a DOS attack could never be initiated.
In the mean time, it is recommended that you use something like an Attack Mitigator from Top Layer. It will help you to weather an attack much better than syn cookies. And before anyone says it, dropping packets that include source routing information also doesn't help."
|