[c-nsp] Any good Cisco (or other vendor) appliances for application server DDoS prevention?
Scott Keoseyan
scott at labyrinth.org
Mon Dec 21 18:12:20 EST 2009
I'd agree to some extent to this sentiment.
Is anyone looking at the techniques for ddos mitigation outlined in
this draft with regards to helping their enterprise customers mitigate
ddos attacks?
http://tools.ietf.org/html/draft-ietf-opsec-blackhole-urpf-04
Scott
On Dec 21, 2009, at 5:21 PM, Artur wrote:
> Good design that should indeed have a good DDoS detection
> appliance :D. But it is not a single box solution.
>
> On 12/21/2009 8:05 PM, Artur wrote:
>> As far as I know Arbor does great stuff again's DDoS but for SP
>> environments, and as I did pointed out, are the only one really
>> capable to mitigate a DDoS attack.
>> For enterprise the only way to do it is with good design.
>>
>> On 12/21/2009 7:15 PM, Tony Varriale wrote:
>>> You may want to contact Arbor since they have a business model
>>> based on what you claim doesn't exist.
>>>
>>> tv
>>>
>>>
>>> ----- Original Message ----- From: "Artur" <arturnrm at gmail.com>
>>> To: <cisco-nsp at puck.nether.net>
>>> Sent: Monday, December 21, 2009 3:05 PM
>>> Subject: Re: [c-nsp] Any good Cisco (or other vendor) appliances
>>> for application server DDoS prevention?
>>>
>>>
>>>> Hello Drew,
>>>>
>>>> Unfortunately there isn't a efficient DDoS mitigation appliance.
>>>> Simply because, to my knowledge there ins't an appliance able to
>>>> handle the huge amount of traffic sent by a DDoS attack.
>>>> Only your SP could prevent this from reaching you.
>>>> The only things you could do would be get some redundancy.
>>>>
>>>> cheers
>>>> Artur
>>>>
>>>> On 12/21/2009 5:39 PM, Drew Weaver wrote:
>>>>> Hello,
>>>>>
>>>>> I'm currently searching for a firewall appliance which can also
>>>>> handle application server DDoS mitigation on a small scale (not
>>>>> network wide).
>>>>>
>>>>> Does anyone know of anything like this from Cisco or any other
>>>>> vendor?
>>>>>
>>>>> I'm aware of the 'huge' network wide products such as
>>>>> CiscoGuard, Arbor, etc but I am looking for something smaller
>>>>> scale, I just need to be able to put something in-line between
>>>>> the WAN and a group of servers that will look for things like 20
>>>>> hosts on the net opening 1000s requests to the same URL.. etc
>>>>>
>>>>> Any advice is appreciated.
>>>>>
>>>>> thanks,
>>>>> -Drew
>>>>>
>>>>> _______________________________________________
>>>>> cisco-nsp mailing list cisco-nsp at puck.nether.net
>>>>> https://puck.nether.net/mailman/listinfo/cisco-nsp
>>>>> archive at http://puck.nether.net/pipermail/cisco-nsp/
>>>>>
>>>>
>>>> _______________________________________________
>>>> cisco-nsp mailing list cisco-nsp at puck.nether.net
>>>> https://puck.nether.net/mailman/listinfo/cisco-nsp
>>>> archive at http://puck.nether.net/pipermail/cisco-nsp/
>>>
>>> _______________________________________________
>>> cisco-nsp mailing list cisco-nsp at puck.nether.net
>>> https://puck.nether.net/mailman/listinfo/cisco-nsp
>>> archive at http://puck.nether.net/pipermail/cisco-nsp/
>>
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
--
Scott Keoseyan
scott at labyrinth.org
Homepage - http://www.labyrinth.org/homepages/scott
Blog - http://www.labyrinth.org/wp1
PGP Key - http://www.labyrinth.org/homepages/scott/pgp.html
More information about the cisco-nsp
mailing list