DDOS Experts wanted

vanguard

Background:
In the gaming entertainment world I'm well known. Because of that I'm a frequent target of DDOS attacks.  The typical method of getting my IP is to use a skype resolver.  When I get rid of skype the problems are solved. Sadly, Skype is like the phone in my world and giving it up means it's tough to do business or maintain relationships.

Idea
Because I have dual WANs (one for me, one for my family) I could send a computer's traffic with skype to the family lan. If it goes down it's not such a big deal.  If mine goes down an income earning live stream with 10,000+ people watching is ruined.  The idea is that with only ~20Mb of download on the family lan they won't be able to stop my PFSense machine from doing its job.

Questions
Does this sound right to you? (BTW, please don't suggest routing all my traffic through a VPN. Anybody thinking that probably hasn't tried to play games over a lag filled VPN.)

cmb

Sounds like as good as you can do in the circumstances. As long as you're blocking the DDoS traffic, 20 Mbps is nothing assuming you have a half decent piece of hardware (a P4, Atom or faster) with good NICs. Won't have any impact on the other WAN from a firewall perspective at least, if they're both on the same provider it's possible the attack could flood something upstream that would impact both, for instance. So to minimize risk, have one cable modem and one DSL for instance rather than two of the same type.