So the other night we got hit with a ddos attack. I kept banning Ips and untill it finally it stopped. I've been reading around and and found some ideas. I have the VPS firewall and APF. I read in a few places I should have both active. That I should set the firewall to allow accept and delete all rules. Then restart APF. This seems to work as far as I know it, but I still have an issue with my SHH. Now they alow said I should install Portsentry to help prevent the attack. But others say it does nothing. So here's my questions. What should I set my VPS firewall to? Any certain tweaks for APF? Should I install Portsentry to help with DDos? Why do I have to keep enabling SSH when I want to use it? even if I add the rule. A few days later I have to remove and readd.