I don't think IT skills matter against a DDoS. A Distributed Denial of Service is like a virtual sit-in, where people send so much traffic to your building, that no legitimate customers can get through. Even if you are fast enough at telling who's a legitimate customer and clearing the extra traffic, if the attackers are persistent enough they can block the roads to your building as well, and no feats of engineering can remove the relentless traffic.
Having a wider road (more bandwidth) helps, but that costs money. You can ask to set up checkpoints farther away from your building (drop connections on an upstream network), but that requires the cooperation of whoever owns that stretch of road. And because the malicious traffic comes from everywhere (remember, Distributed Denial of Service), often from compromised and infected machines, there's not many ways you can tell who's a legitimate customer.
(Some people just decide to ban networks on which there are many compromised machines and not many legitimate visitors, like China :< It's disappointing because I grew up there.)
Disclaimer: I'm a programmer, not a network engineer.
I don't think IT skills matter against a DDoS. A Distributed Denial of Service is like a virtual sit-in, where people send so much traffic to your building, that no legitimate customers can get through. Even if you are fast enough at telling who's a legitimate customer and clearing the extra traffic, if the attackers are persistent enough they can block the roads to your building as well, and no feats of engineering can remove the relentless traffic.
Having a wider road (more bandwidth) helps, but that costs money. You can ask to set up checkpoints farther away from your building (drop connections on an upstream network), but that requires the cooperation of whoever owns that stretch of road. And because the malicious traffic comes from everywhere (remember, Distributed Denial of Service), often from compromised and infected machines, there's not many ways you can tell who's a legitimate customer.
(Some people just decide to ban networks on which there are many compromised machines and not many legitimate visitors, like China :< It's disappointing because I grew up there.)
Disclaimer: I'm a programmer, not a network engineer.