State-of-the-art XDP DDoS Protection

Terabit-scale global capacity for scrubbing attack traffic at the edge. Clean flows are handed back over GRE or IPIP tunnels with BGP on our anycast network, or through protected Minecraft tunnels when you need a hidden origin and low-latency player delivery.

  • Terabit-scale mitigation across 9 global PoPs
  • GRE / IPIP delivery with BGP and anycast routing
  • Minecraft protection and application filters from the panel

Application filters

Protect your application with our prebuilt filters.

Enable the filters you need in a single click — no ticket, no custom rule writing to get started. If the application you run is not listed here, we build protocol-aware filtering tailored to your stack.

FiveM

Minecraft

SAMP

MTA

CS2

Rust

Garry's Mod

Team Fortress 2

TeamSpeak 3

SCP: Secret Laboratory

RDP Protection

SSH Protection

One-click controls

Each filter is available from the NorthShield panel. Toggle FiveM, Minecraft, CS2, Rust, voice, or remote access protection per service without rebuilding your edge policy from scratch.

A2S caching

Our A2S caching runs on the anycast path, so Steam query responses stay fast and stable while attack traffic is scrubbed away from your game origins.

DDoS Protection

Scrub centers close to where traffic enters.

Terabit-scale scrub capacity across nine PoPs in Europe, Turkey, and the US. Attack traffic is dropped at the edge; clean traffic returns over GRE/IPIP tunnels, BGP sessions, or protected game paths on our anycast network.

+8 Tbit/s

Global capacity

+1 Tbps

Largest mitigated

9

PoPs

Explore DDoS protection
Loading map...