[c-nsp] device advice

mikus der.mikus at gmail.com
Tue Mar 22 02:51:13 EST 2005 

These units come highly recommended, they really do handle small and
very large floods of anomalous traffic rather easily.  They actually
allow you to sleep at night if you are a recipient of common DDoS and
require very little maintenance once you tune them well (read:
manually).

Some items to note: Be careful to mind their recommendations of
protecting only 30 unique hosts or networks, as once they hit that
limit and get pushed a bit, they do become unstable.  I would
recommend keeping this number no more than 25 if they get kick in a
lot or hard.  If you have a small footprint, or can categorize your
network easily by a large aggregate, they will handle your needs
easily.  Otherwise, ask to talk to a BU TME about help for planning
the deployment if you decide to spring for them.

-mb


On Mon, 21 Mar 2005 15:18:42 -0500, Luan Nguyen <luan.nguyen at mci.com> wrote:
> Cisco guard XT 5650
> http://www.cisco.com/en/US/partner/products/ps5888/index.html
> 
> Luan
> 
> 
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Arie Vayner
> Sent: Monday, March 21, 2005 3:08 PM
> To: cisco-nsp at puck.nether.net
> Subject: Re: [c-nsp] device advice
> 
> I would try looking at the Cisco/Riverhead Guard/Detector solution (not sure
> if they have a new name for it now)
> 
> Arie
> 
> On Mon, 21 Mar 2005 11:52:10 +0200, Dmitry Kiselev <dmitry at dmitry.net>
> wrote:
> >
> > Could anybody advice me a device that capable to do TCP SYN scan/flood
> > detection (prevention will be great) for about 0.5-1 Gbps, 80-150 kpps
> > traffic load. I think this device may have two or more GigE interfaces
> > for transit traffic pass through.
> >
> > Thanks!
> >
> > --
> > Dmitry Kiselev
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>

More information about the cisco-nsp mailing list