Remote DDoS is for client's with a remote data center or host where they own the IP space. Instead of relocating the IP space, they can announce their IP into our network where we will scrub the dirty traffic and deliver the clean traffic over GRE tunnel back to your server or network.
You will need your own IP space, ASN, and a router that is able to do BGP (Border Gateway Protocol) and GRE (Generic Routing Encapsulation) tunnels. To get setup, we'll need an LOA (Letter of Authorization) authorizing the announcement of your IP block (prefix) on our network.
Prefix is an IP block assigned to you from ARIN. LOA are Letter of Authorization where you will specify the prefix we are allowed to announce. The LOA must include your company letter head, ASN number, and a statement that says AS40676 is allowed to announce your prefix.
Your welcome to announce small prefixes such as a /24 which can be for one specific server or simply high risk clients who are under attack.
Yes a minimum prefix of /24 along with a router that allows BGP and GRE is required to get started.
When a tunnel along with GRE is built, you do not need to announce prefixes all the time. You can wait until an attack occurs where you can announce the prefix to initiate the mitigation process. note you can only announce a /24 which is the smallest a BGP route allows for a provider to recognize that prefix. There are no charges when announcing and withdrawing prefixes. The flexility is in the network operator's decision.