grelmar - 3:15 am on Oct 21, 2010 (gmt 0)

I'm really surprised that people are having trouble finding Hosting Providers that can provide basic DDOS protection. From the sound of it, the guys trying to DDOS you are rank amateurs, the level of traffic you are describing is a drop in the bucket compared to a hard-core DDOS.

As has been mentioned, protection against this type of DDOS is basically an exercise in un-boxing some hardware, plugging it it, and going back to drinking coffee.

Without endorsing, here's a link to one solution:
[h10163.www1.hp.com...]

Cisco and Juniper Networks also provide out of the box solutions.

The advertising page doesn't mention DDOS protection, but that hardware works very well in that capacity. I've accidentally blacklisted myself working from home and running Macro based tests against our services (which can look a lot like an intrusion attempt/single vector DDOS).

Really easy to manage. Hosting providers too dense/cheap/lazy to provide basic DDOS protection don't deserve to be in business.

A truly massive DDOS is quite hard to protect against, but that's not what you're facing. Any DDOS that can be mitigated by moving to a higher performance server is small time.