A dynamic procedure exists in the course adjustment of the IP ADDRESSES with so named Blacklists and the analysis and filtration of the detailed data traffic through the worst router of the provider. Data packages of well known IP addresses are rejected. Just as a dynamic filtration can have reference to amounts of data. The access can deny every IP ADDRESS, that exceeds an adjustable limit (volume of data per time), completely or the bandwidth restricted become.

In smaller DDoS attacks, that cause no considerable data traffics and unnecessarily burden solely the server, the blocking can be even meaningful on basis of the origin-IP-address through the server.

In the complete barrier of the detailed data traffic, all data packages detailed on the concerned goal-IP-address are rejected at the worst router of the provider. That means in the return end that also legitimate inquiries are rejected at the IP ADDRESS and the behind it lying server. The server is then in reality no longer attainable wherewith the attack reached its goal. This measure can be used therefore only short-termed. If the attacks appear repeats, the possibility exists to change the IP ADDRESS of the server or to use a dynamic filtration.