Steel City Logo

Contact us

0114 5500 121

Stop DDoS attacks before they take you down

DDoS attacks can be incredibly annoying. Out of nowhere, your website is inaccessible, and you’re losing traffic and sales. There’s no indication as to who is attacking you, and no demands you’ve received for them to stop. All of that leaves you on the back foot, fighting against something you don’t have a lot of experience in. Thankfully, steel city digital has over 20 years of experience in fighting back against DDoS attacks, and we’ve developed a whole series of methods to get your website back online.

First, let’s talk about what exactly a DDoS attack is, what the motivations are, and how you can best combat them.

What is a DDoS attack?

DDoS stands for Distributed Denial of Service. The denial of service part is self-explanatory, but what does distributed mean? It means more than one “thing” is attacking you, spread over multiple IP addresses. This distribution causes the issue, as the server your website is hosted on has to deal with a large number of connections in a short time and becomes overloaded.

Why do DDoS attacks happen?

You’d logically think most DDoS attacks would coincide with an email or message demanding money to stop the attack. However, in our experience dealing with hundreds of DDoS attacks in Sheffield and elsewhere, this is extremely rare. The vast majority of DDoS attacks involve no communication whatsoever and can start and stop seemingly at random.

Not all DDoS-like events are malicious. Some search engine bots can go haywire and attempt to access your website hundreds of times a second, overloading the server. These “attacks” are easy to fix by blocking the bot or adjusting your robots.txt file.

However, if you’re experiencing a persistent DDoS attack, it’s usually a competitor paying a service to attack your business. If that sounds like what’s happening to you, keep reading—we’ll show you some steps to stop it without needing to hire us. We don’t charge for simple solutions; that’s not the Steel City Digital no-nonsense way!

Step one: Gather information about the attack

DDoS attacks come in different forms, and no two are quite the same. The more information you gather, the easier it is to fight back.

If you’re familiar with hosting environments, check your server’s raw access logs. If not, setting up a free cloudflare account is a great start. Cloudflare provides built-in analytics to help you identify attack sources and offers an under attack mode, which challenges visitors before they can access your site. This resolves many low to mid-range DDoS attacks for free.

For many attacks, enabling under attack mode for a day or so will make the attackers give up. If the attack persists, you’ll have gathered enough data on the attacking IPs to block them through cloudflare.

If the attack continues, the attackers might be hitting your server’s IP directly, bypassing cloudflare, or the attack volume might exceed what cloudflare’s free tier can handle. In that case, it’s time for server-side blocking.

Step two: Blocking attacks manually

The best approach here is to download your server logs and use a free tool like HTTP logs viewer to identify problem IPs and access patterns. Look for patterns in the attack:

✔ Are all the IPs coming from the same country?
✔ Do they share a common prefix?
✔ Is the attack targeting a single, unimportant page?

If you spot a pattern, you can block the attack effectively.

Using .htaccess to block traffic

If your website runs on apache, you can modify the .htaccess file to block malicious IPs.

Blocking a single IP address

Order Allow,Deny
Deny from 192.168.1.100
Allow from all

This prevents 192.168.1.100 from accessing your site.

Blocking multiple IPs

Order Allow,Deny
Deny from 192.168.1.100
Deny from 192.168.1.101
Deny from 203.0.113.50
Allow from all

Blocking an entire IP range

To block all IPs in a range (e.g., 192.168.1.*):

Order Allow,Deny
Deny from 192.168.1
Allow from all

For a broader range:

Deny from 192.168

This blocks 192.168.0.0 to 192.168.255.255.

Blocking based on user-agent (bot mitigation)

If a botnet is behind the attack, block specific user-agents:

RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} BadBot|EvilScraper [NC]
RewriteRule .* - [F,L]

Blocking a specific page

If the attack targets a single, unimportant page:

RewriteEngine On
RewriteCond %{REQUEST_URI} /attacked [NC]
RewriteRule .* - [F,L]

These steps should help mitigate most small to mid-sized DDoS attacks.

If the above steps don't stop the attack, it's time for professional protection.

How steel city digital can help

We offer

A range of different anti-DDoS services here at steel city digital and we have over 20 years of experience in applying them in the real-world for people just like you. We won't go into them all as it will get a bit needlessly complex, but our big three are:

Layered security

Single security measures can fail, whereas a layered approach—with multiple backup systems working in tandem—keeps your website running even during large-scale attacks.

Traffic filtering

At the heart of DDoS resolution is deciding which traffic is malicious and which is legitimate. Our systems will filter out the bad actors and leave your website online to continue making you money.

24/7 Monitoring

Our 24/7 monitoring service will make sure that no matter the day or night, we'll be on the scene immediately should an attack occur. This avoids any unnecessary downtime and lost income.

How we work

to protect your website and keep you online! At its core our approach to stopping a DDoS attack is relatively simple and involves three main elements:

Detection

Our experienced engineers and monitoring systems will detect an attack and begin to analyse the patterns. We'll quickly identify commonalities within the attack which we can use in our next step.

Blocking

Now that we've analysed the attack and can see where it's coming from, what is being attacked and how, we can begin to block the malicious traffic. We'll set up blocks at various levels to stop it dead.

Adaptation

It is rare that there won't be some adaptation in the attack. Once we block one vector of attack, the perpetrators will then likely change their approach. We are always on the look out for this.

Why choose us?

We've stopped more DDoS attacks than we've had yorkshire puddings, and trust us, we've eaten a load of those! If you're looking for a reliable and professional source of help with handling a DDoS attack, then you're in the right place. Just shoot us an email or give us a ring and we'll get you back online in no time.
  • Easily Affordable
  • Sheffield Based / Nationwide Coverage
  • Infinitely Scalable
  • Over 20 Years Experience
  • Everything Explained in Easy to Understand terms
  • 24/7 Availability
  • Multi-Layered Approach
  • No Nonsense Quick Deployment
  • Industry Compliant

Are you experiencing a DDoS attack? Get in touch and let us start protecting you today!

Steel City Sheffield Logo
Book your free consultation today and let's discuss how we can transform your online presence.
WE ARE AVAILABLE

Mon-Fri: 09.00 am to 6.00 pm

Call: 0114 5500 121
Contact us

Quick Links

Based in Sheffield

Steel City Digital are born and bred in Sheffield. We are located at:

Steel City Digital
110 Walkley Crescent Road
Sheffield
S6 5BB

We're always happy to meet in person or online so let's get started!
Made by Steelcity.digital
Privacy Policy Cookie Policy Terms & Conditions
© 2025 Steel City Digital | All Rights Reserved