NGINX Reverse Proxy IIS

Hello. I have a Windows 2012 R2 server with IIS currently set up on it. I also have a seperate Linux server on which I can reinstall any distro I need onto it to suit what you recommend (CentOS,Ubuntu,Debian). I want someone to set up an NGINX reverse proxy on the Linux server that is configured to block DDOS attacks and only allow "real" visitors through. The NGINX server should fully mask the Windows servers IP and be configured to withstand DDOS attacks. The Windows server should also be configured to work with the NGINX server if necessary. Full access will be given to the Linux server for you to do this, and the Windows server will be accessed through teamviewer with me. The reverse proxy does not have to be NGINX but that is what has been recommended. If you have something better you would like to use I can look into it. We may be using https in the future so Id like you to keep that in mind (let me know what has to be changed to make it work). Just to clarify - Visitor enters domain name > points to NGINX server > (if the visitor is a bot/DDOS, block the connection to the Windows server) > Windows Server > show IIS website under proxy ip. The Windows server which hosts IIS should not be able to have its IP obtained by the public. New freelancers welcomed to offer as long as you have experience with doing what I'm after. Price can be negotiated. Thanks.