Protection against DDoS denial of service attacks

Hi,

We’ve been running Jitsi for many months & have greatly enjoyed it. About 3 weeks ago though we’ve had a series of DDoS that effectively shut us down.

Does anyone have suggestions of ways to protect against DDoS?

I recall someone mentioning in a forum that they were considering adding an htaccess password to protect the main directory, but didn’t hear how that went.

Any thoughts (plus advice if there is any reason that might cause issues) would be appreciated.

Thanks!