Solved

DMZ and DoS attacks

Posted on 2014-04-02
5
380 Views
Last Modified: 2014-04-03
Since a DoS attack will take out a proxy, and the proxy will probably spare the internal server, what happens to the internal server abilities to service its clients

Perhaps I should ask this regarding normal configuration:

Would the internal server have access to more than one proxy if it goes down.

Would you have two or more internal servers or applications, with their own private proxy, but they will still service the same database

How does this work, or rather how is the system configured to survive a DoS on a proxy

njd
0
Comment
Question by:Anthony Lucia
5 Comments
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39973307
It will be like pulling your internet connection.

Email services will be up but unable to send/recieve.
Web browsing dies completely.
etc. etc.

Its not the service usually effected by the DOS, its the pipe used by the service. The freeway is a great example, the freeway, cars, source and destination all work, however there is so much congestion nothing gets where it should go.
0
 

Author Comment

by:Anthony Lucia
ID: 39973585
So if you have a proxy, through the firewall to the App, and the proxy gets hit by a DoS, how do you respond

Is there a way to get the app working again
0
 
LVL 48

Expert Comment

by:Tintin
ID: 39973724
Are you talking about a reverse proxy?

Are you talking about internal clients?
0
 
LVL 10

Assisted Solution

by:0xSaPx0
0xSaPx0 earned 500 total points
ID: 39974929
If you are subject to a denial of service attack it will be mass congestion of your network connection, the apps you run, the proxies that filter traffic and the routers that route do not make any difference.

If this occurs you call your ISP and ask them for help.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 39976653
You have to work with the ISP if your getting some of today's largest DDOS attacks, and even some smaller ones. The ISP and it's peer's are the only way to deal with traffic that has filled up your connection. Todays DDOS's cannot be mitigated with hardware or applications that simply try to send RST packets, the pipes are too full for the RST packet to kill all the connections. The ISP or it's peers have to siphon the data off:
http://arstechnica.com/security/2013/03/how-whitehats-stopped-the-ddos-attack-that-knocked-spamhaus-offline/
If connection providers would do a little better job with some kinds of egress traffic we could all benefit.
-rich
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
change password links 7 74
Do we need servers??? 5 190
active directory 6 76
Exchnage 2013  Error '550 5.7.1 Requested action not taken: message refused' 6 47
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
A customer recently asked me about anti-malware and the different deployment options available for his business. Daily news about cyberattacks, zero-day vulnerabilities, and companies that suffered a security breach made him wonder if the endpoint a…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now