Fighting malicious abuse reports
I'm a developer on a relatively popular game server. For some time now we've had a series of DDOS attacks on our infrastructure and, with time, developed means of fighting them with a more intelligent firewall on our TCP connections.. and.. with cloudflare on our http endpoints. So far so good, attacks vanished and we had our peace.
Now the newest thing are a serious of malicious abuse reports filed with cloudflare, which lead to an immediate flag for suspected phishing. We get the same reports from AWS, only they include the logs which were supplied which are clearly bogus as they provide only http endpoints, two of which are reverse proxied into completely different binary mini-apps running on different servers.
while I consider cloudflare one if not the greatest services against ddos, I would just like another opinion on how to proceed here, we are protected against ddos, but a false report takes us out ?
0 Replies