Solved

DMZ and DoS attacks

Posted on 2014-04-02
5
374 Views
Last Modified: 2014-04-03
Since a DoS attack will take out a proxy, and the proxy will probably spare the internal server, what happens to the internal server abilities to service its clients

Perhaps I should ask this regarding normal configuration:

Would the internal server have access to more than one proxy if it goes down.

Would you have two or more internal servers or applications, with their own private proxy, but they will still service the same database

How does this work, or rather how is the system configured to survive a DoS on a proxy

njd
0
Comment
Question by:Anthony Lucia
5 Comments
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39973307
It will be like pulling your internet connection.

Email services will be up but unable to send/recieve.
Web browsing dies completely.
etc. etc.

Its not the service usually effected by the DOS, its the pipe used by the service. The freeway is a great example, the freeway, cars, source and destination all work, however there is so much congestion nothing gets where it should go.
0
 

Author Comment

by:Anthony Lucia
ID: 39973585
So if you have a proxy, through the firewall to the App, and the proxy gets hit by a DoS, how do you respond

Is there a way to get the app working again
0
 
LVL 48

Expert Comment

by:Tintin
ID: 39973724
Are you talking about a reverse proxy?

Are you talking about internal clients?
0
 
LVL 10

Assisted Solution

by:0xSaPx0
0xSaPx0 earned 500 total points
ID: 39974929
If you are subject to a denial of service attack it will be mass congestion of your network connection, the apps you run, the proxies that filter traffic and the routers that route do not make any difference.

If this occurs you call your ISP and ask them for help.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 39976653
You have to work with the ISP if your getting some of today's largest DDOS attacks, and even some smaller ones. The ISP and it's peer's are the only way to deal with traffic that has filled up your connection. Todays DDOS's cannot be mitigated with hardware or applications that simply try to send RST packets, the pipes are too full for the RST packet to kill all the connections. The ISP or it's peers have to siphon the data off:
http://arstechnica.com/security/2013/03/how-whitehats-stopped-the-ddos-attack-that-knocked-spamhaus-offline/
If connection providers would do a little better job with some kinds of egress traffic we could all benefit.
-rich
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Suggested Solutions

Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
OfficeMate Freezes on login or does not load after login credentials are input.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now