Detection, Mitigation & Response

Detect and mitigate DDoS attacks in under 1 second, respond automatically, and keep your users informed.

All features →
1-Second Detection
Know the instant traffic spikes. PPS checked every second.
Attack Classification
Identifies 7 attack families with protocol-level confidence scores.
Node Firewall Rules
Per-server iptables, null-routes, CDN rules & scripts.
Cloud Scrubbing
Auto-divert to Cloudflare, OVH, or Hetzner on attack detection.
BGP Mitigation
Auto-deploy FlowSpec, RTBH blackhole & rate-limiting via BGP.
Multi-Channel Alerts
Discord, Slack, PagerDuty, OpsGenie, SMS, email, webhooks.
PCAP Capture
Full packet capture with AI-powered forensic analysis.
Layer 7 Detection
HTTP flood, credential stuffing, API abuse & bot detection.
Automated Runbooks
Chain mitigation steps into automated incident response playbooks.
Analytics Baselines Threat Intel & IOC Multi-Node Status Pages Correlation Audit Log Attack Profiles Flow Collection Mirror / SPAN Mode
Learn
Documentation Quick Start API Reference Agent Setup DDoS Protection Landscape State of DDoS 2026 REPORT Free Certifications Hackathon Sponsorships
Research & Guides
Server Nerd Comic NEW Mirai Botnet Kill Switch Research memcached Amplification Dynamic Baselines PCAP Forensics PagerDuty Setup
Company
About Us Partners Managed Protection Whitelabel / Reseller Affiliate Program Pay with Crypto System Status
Legal & Support
Contact Us Security Trust Center Terms Privacy SLA
Who Uses Flowtriq

From indie hosts to ISPs, see how teams like yours use Flowtriq to detect and stop DDoS attacks.

All Use Cases → Talk to Us →
Infrastructure
Hosting Providers ISPs MSPs/MSSPs Small Operators Routers Edge Node Defense Proxy Providers VPN Providers
Gaming & Entertainment
Game Server Hosting Game Studios Esports Platforms iGaming & Sportsbooks
Business & Emerging
SaaS Platforms E-Commerce Financial Services Compliance VoIP & Cloud Calling GPU & AI Cloud
Home/Integrations/Plesk
Direct agent install Plesk Obsidian 2 min setup

DDoS Detection for Plesk

Install ftagent directly on your Plesk server. Real-time DDoS detection, automated firewall rules, and instant alerts for every hosted site. Works alongside Plesk Firewall and Fail2Ban with zero conflicts.

Start free trial → GitHub

How It Works

Plesk Server
Your hosting node
ftagent (on same server)
Reads kernel counters
Flowtriq Dashboard
Detection + alerts + mitigation

Setup

Three steps to DDoS protection

1

Sign up for Flowtriq

Create a free account and get your deploy token from the dashboard. The 14-day trial includes all features with no credit card required.

2

Install ftagent on your server

SSH into your Plesk server and run one command:

curl -sL https://get.flowtriq.com | sudo bash

The installer detects your OS, installs ftagent, and walks you through configuration.

3

See attacks in your dashboard

Within minutes, traffic data appears in Flowtriq. Baselines build automatically. Attacks are detected, classified, and trigger your configured alert channels and mitigation policies.

Capabilities

What you get with this integration

Sub-Second Detection

ftagent reads kernel-level network counters every second directly on your Plesk server. Attacks are detected in under 1 second. No NetFlow delay because the agent runs on the same machine.

Attack Classification

Every detected attack is classified: SYN floods, UDP amplification, DNS reflection, NTP monlist, ICMP floods, GRE floods, fragmentation attacks, and more. Each with protocol-level confidence scores.

Automated Firewall Rules

ftagent deploys iptables or nftables rules on your Plesk server to drop attack traffic at the kernel level. Rules are surgical: they target specific attack signatures without affecting legitimate web traffic.

Multi-Channel Alerting

Get notified instantly via Discord, Slack, PagerDuty, OpsGenie, email, SMS, or webhooks. Alert messages include attack type, target IP, traffic volume, and recommended actions.

PCAP Capture

Because ftagent runs directly on the server, it can capture full packet data during attacks. Use PCAP evidence for forensic analysis, abuse reports, and upstream provider escalation.

Compatible with Plesk Firewall + Fail2Ban

ftagent manages its own iptables chain and never modifies rules from Plesk Firewall or Fail2Ban. All three run simultaneously without conflict.

Protect your Plesk server today

Real-time DDoS detection and automated firewall rules starting at $9.99/node/month. Free 14-day trial with no credit card required.

Start your free trial → View on GitHub Talk to us →
Built by the team behind CVE-2024-45163 | Trusted by ISPs and hosting providers worldwide

FAQ

Frequently Asked Questions

Does ftagent conflict with Plesk Firewall extension?

No. ftagent manages its own iptables chain and does not modify rules created by Plesk or its Firewall extension. Both run simultaneously. During an attack, ftagent inserts temporary rules in its own chain and removes them when the attack ends.

What Linux distributions does this work with?

ftagent works on all distributions supported by Plesk: Ubuntu 20.04/22.04/24.04, Debian 11/12, CentOS Stream 9, AlmaLinux 8/9, Rocky Linux 8/9, and Red Hat Enterprise Linux 8/9. The installer auto-detects your OS.

Can Flowtriq detect attacks on individual Plesk subscriptions?

Flowtriq monitors the entire server and detects attacks by target IP. If your Plesk server uses dedicated IPs per subscription, Flowtriq identifies which subscription is being targeted. On shared IPs, it detects the attack on the shared IP and shows port and protocol details.

How much server resources does ftagent use?

Under 1% CPU and about 100 MB RAM on a typical hosting server. ftagent reads kernel-level network counters rather than inspecting individual packets, so overhead is minimal even on busy servers.

Does this work with Plesk on Windows?

No. ftagent requires Linux. The Plesk integration is supported only on Linux-based Plesk installations.

Can I use this alongside Fail2Ban?

Yes. ftagent and Fail2Ban serve different purposes and do not conflict. Fail2Ban handles brute-force protection (SSH, FTP, mail login attempts). Flowtriq handles volumetric DDoS detection and mitigation. Both can run simultaneously on the same server.