Any personal feedback about Hetzner DDOS protection?

I am using them and have used them in the past.

Their protection is not stateful, so it is not the best.

For example when you are under TCP-AMP Attack, their firewall will conflict and end up blocking legitimate connections. I could spoof attacks from CloudFlare, it would end up blocking CloudFlare IP's due not being stateful.

However their pricing is great.

 

Depends on which services you are going to offer from your server.

If you operate in a risk market like religion, gambling, porn, dating, cam etc then you better take a full service DDoS product.

Many dedicated server providers nowadays supply it as an addon but did not specialize in DDoS as core business.

Consequence if your server is overddosed too often or for too long.
IP null routed for a long time or termination server if it occurs more frequently.

I can't find anywhere about how much GB per second Hetzner offers as DDoS protection. Most dedicated service providers offer a few GB / sec.

That seems a lot, but it's a joke.
That's what you're on about, if like only a couple of malots pussing around.

On the other hand, we're all going through a bit. I even see cat websites behind a thick firewall these days. We hardly dare to make mistakes anymore. But a cat site doesn't have to be online 24/7, right? It can be offline from time to time.

 

I heard feedback from clients who used Hetzner formerly, its not very good. Can't protect against attacks like Spoofed. (But thats what i heard as said. Not tested myself)

I think its just to protect from major outage.

 

They can detect from spoofed attacks but not TCP-AMP. Their protection have blocked 150Gb/s attacks in the past, I've been under some pretty big attacks.