Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
Solved
stopping ddos attacks
Posted on 2012-12-28
WE ARE FACING MASSIVE DDOS ATTACK FOR OUR NETWORK
WE ARE USING 1 STM BANDWIDTH FOR OUR NETWORK.
WE HAVE BLOCKED THIS MASSIVE DDOS ATTACK AT OUR END USING RADWARE BOX . BUT MAIN PROBLEM IS ,
THAT MASSIVE DDOS ATTACK CONSUME 1 STM BANDWITH BETWEEN OUR BOX AND UPSTREAM PROVIDER, HENCE OUR 1 STM PIPE GETS BLOCK
. BECAUSE OF THIS WE FACING OUTAGE IN OUR NETWORK FOR INTERNAET TRAFFIC.
PLEASE , LET US KNOW ANY SOLUTIONS FOR THIS,
THANK TOU
WE ARE USING 1 STM BANDWIDTH FOR OUR NETWORK.
WE HAVE BLOCKED THIS MASSIVE DDOS ATTACK AT OUR END USING RADWARE BOX . BUT MAIN PROBLEM IS ,
THAT MASSIVE DDOS ATTACK CONSUME 1 STM BANDWITH BETWEEN OUR BOX AND UPSTREAM PROVIDER, HENCE OUR 1 STM PIPE GETS BLOCK
. BECAUSE OF THIS WE FACING OUTAGE IN OUR NETWORK FOR INTERNAET TRAFFIC.
PLEASE , LET US KNOW ANY SOLUTIONS FOR THIS,
THANK TOU
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
7 Comments
Call your provider and ask them to block it on their side, if possible. Other than that, there's not a lot to stem the tide until it dies off.
Active today
Check http://hakin9.org/is-ddos-still-a-threat/
I think it's wise to look at dedicated appliances such as cisco fortinet or juniper which are made to detect and defend. Try with http://www.fortinet.com/products/fortiddos/index.html
I think it's wise to look at dedicated appliances such as cisco fortinet or juniper which are made to detect and defend. Try with http://www.fortinet.com/products/fortiddos/index.html
unfortunately we had a similar issue where all bandwidth was being used from the DDOS attack and true clients where getting denials.
even international companies like Barclay's cant stop it,
Network floods, server floods, DDoS attacks are almost impossible to stop. Only thing we can do is try are reduce the disruptions it can cause.
Some companies have just decided to buy massive amount of redundant bandwidth which they never use, used only if there was an attack.
The main issue with an 'on-premise' solution is bandwidth would be consumed whilst the DDoS attack is happening. Granted the local DDoS device will block the attack but the bandwidth may have already been saturated at this point disrupting/slowing your clients from connecting to the service. Although this would not be as distruptive than not having anything in place and letting the Firewall deal with it.
A 'cloud' based approach would mean when you are under a DDoS attack all traffic is redirected to Cloud data centres for analysis. After malicious traffic is 'scrubbed' and discarded, valid traffic is forwarded back to you.
This however is only one attack method and is the most expensive to use.
The way the cloud solutions usually works involves changing DNS records to point to the cloud service provider, then they forward what they deem to be clean traffic on to you.
We will however still have to have a routable internet presence so if the attackers are not playing nice and not using DNS in the normal way, or are simply attacking us directly on your IP, then they have bypassed the cloud DDoS solution altogether.
Again the cloud service provider can provide more functionality but this again means more money whereas the hardware appliance would be able to deal with this.
Other things to consider are how fast changes can and will be made with a cloud solution compared to on premise, and how you feel about all traffic, including legitimate traffic, being passed through someone else’s control (and being at their mercy) before it reaches you.
even international companies like Barclay's cant stop it,
Network floods, server floods, DDoS attacks are almost impossible to stop. Only thing we can do is try are reduce the disruptions it can cause.
Some companies have just decided to buy massive amount of redundant bandwidth which they never use, used only if there was an attack.
The main issue with an 'on-premise' solution is bandwidth would be consumed whilst the DDoS attack is happening. Granted the local DDoS device will block the attack but the bandwidth may have already been saturated at this point disrupting/slowing your clients from connecting to the service. Although this would not be as distruptive than not having anything in place and letting the Firewall deal with it.
A 'cloud' based approach would mean when you are under a DDoS attack all traffic is redirected to Cloud data centres for analysis. After malicious traffic is 'scrubbed' and discarded, valid traffic is forwarded back to you.
This however is only one attack method and is the most expensive to use.
The way the cloud solutions usually works involves changing DNS records to point to the cloud service provider, then they forward what they deem to be clean traffic on to you.
We will however still have to have a routable internet presence so if the attackers are not playing nice and not using DNS in the normal way, or are simply attacking us directly on your IP, then they have bypassed the cloud DDoS solution altogether.
Again the cloud service provider can provide more functionality but this again means more money whereas the hardware appliance would be able to deal with this.
Other things to consider are how fast changes can and will be made with a cloud solution compared to on premise, and how you feel about all traffic, including legitimate traffic, being passed through someone else’s control (and being at their mercy) before it reaches you.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others. This conference is aimed mainly at government agencies. So it addresses the various compli…
With the rising number of cyber attacks in recent years, keeping your personal data safe has become more important than ever. The tips outlined in this article will help you keep your identitfy safe.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message.
In the To field, type your recipient's fax number @efaxsend.com.
You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month4 days, 1 hour left to enroll
630 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.