Transcription
DDoS Protection Solution#Terabit Security LLC, 20162015 Terabit Security - All rights reserved
AGENDATechnicalSpecialtyAbout DDoSTerabit SecurityDPS2015 Terabit Security, All rights reservedContact UsRequest a Demo
About DDoS2015 Terabit Security - All rights reserved
ABOUT DDoS2015 Terabit Security, All rights reserved
SOME FIGURES ABOUT DDoS2015 Terabit Security, All rights reserved
IMPACT OF DDoS ATTACKS ON YOUR BUSINESSReputation DamageTheftAttacks are becoming more advanced and nowinclude stolen funds, customer data, andintellectual propertyYour band suffers if customers can't access yoursite or became casualties of data breachProductivity lossRevenue lossWhen critical network system are shut down,your workforce’s productivity comes to a haltDowntime affects your bottom-line. The averagecosts of downtime is 5,600/minute, or over 300K/hour2015 Terabit Security, All rights reserved
PROFESSIONALS SAYS ABOUT DDoSArbor NetworksVerisignKaspersky LabMatt Moynahan, presidentBen Petro, senior VCE.Vigovsky, head of DDoS protectionHackers' improving and evolvingtechniques are especially obviouswhen it comes to distributed-denialof-service attacks.Businesses are facing a number ofthreats in today's economy. When aDDoS attack or DNS failure hits awebsite or network, companies arelosing significant revenue andemployee productivity, and are likelyseeingdecreasingcustomersatisfaction and loyaltyEven with a large staff of ITprofessionals it is almost impossiblefor companies to handle a seriousDDoS attack and recover theirservices on their ownDDos is on a trend that is onlygoing to continue2015 Terabit Security, All rights reserved
Terabit Security DPS2015 Terabit Security - All rights reserved
TERABIT SECURITY DPSTerabit DPS is solution for the detection ofDDoS attacks and their subsequenttreatment. Terabit DPS will help to ensuremaximum availability of your network andeliminate any disruptions caused by DoS /DDoS attacks2015 Terabit Security, All rights reserved
WHY DPSClusteringFast DeploymentDisparately fast deployment of DDoS protectionsystem – 10 minutes to startClustering option for performance andredundancy. Sflow capture – up to 10Tbps (1Tbpsper server), traffic mirroring – up to 6.4Tbps(40Gbps per server)Short response timeAdvanced WEB GUIAffordable DDoS ProtectionTraffic Visualization ToolPremium SupportLow hardware requirementsImmediate detection of DoS/DDoS attack in 1-2secondsThe most cost-effective on-premise DDoSmitigation solution on the market! Annualsubscriptions include free support and upgrades.All support inquiries are answered by experiencedengineers. Terabit DPS Proffesional Support withSLA 24 5, 24 7, 24 365Web application offers single-point DPSmanagement, network monitoring and reportingof data received from Collector, Explorer andFilters deployed within the networkVisualization of traffic Upstream / Donwstream inbps and pps for whole network or dedicated hostUp to 10GE with 12 Mpps on E5-1650V3 with IntelNIC 82599 10GE2015 Terabit Security, All rights reserved
HOW DPS WORKSBorderrouterAccessswitchCustomersPrimary uplinkBackup uplinkNetFlow/IPFIXsFlow, Port mirrorBGP,BGP FlowspecDPS Server2015 Terabit Security, All rights reservedSupported border routersExtreme X460/X670Juniper EX, MX seriesCisco ASR-seriesHuawei NE5000E
HOW DPS WORKSTraffic CapturingNetFlow v5, v9IPFIXsFlow v4 (dev branch only), v5Port mirror/SPAN capture with PF RING (with ZC/DNAmode), SnabbSwitch, NETMAP and PCAPDDoS MitigationComplete BGP Flowspec support, RFC 5575Can process incoming and outgoing trafficCan trigger block script if certain IP loads network with alarge amount of packets/bytes/flows per secondThresholds could be configured in per subnet basis withhostgroups featureCould announce blocked IPs to BGP router with ExaBGPGoBGP integration for unicast IPv4 announces2015 Terabit Security, All rights reserved
DELIVERY OPTIONSDPS SOFTWARE APPLIANCEDPS VIRTUAL APPLIANCEDPS HARDWARE APPLIANCEGET FULL FUNCTIONALITY OF DPSGET SAFETY WITHIN 15 MINUTESGET ENTERPRISE LEVEL SOLUTIONInstall DPS on your own serverProtection up to 1TbpsMost popular OS supportedRestore image to your hypervisorProtection up to 1TbpsMost popular hypervisors supportedGuaranteed SLAProtection up to 6.4TbpsAdvanced support included2015 Terabit Security, All rights reserved
PROFESSIONAL SUPPORTBasicIntermediateAdvanced8 5 support service 20 cases per year12 7 support service unlimited cases24 7 support service unlimited casesProvides an engaged response forsmall companies with a limitednumber of casesProvides professional support fornon-critical systems based on 12x7scheduleProvides an enterprise level 24x7support for critical systems withunlimited number of cases2015 Terabit Security, All rights reserved
OUR CUSTOMERS1000 customers20 countriesTerabits of protected traffic* Includes community versionWhat people say about us2015 Terabit Security, All rights reserved
Technical Specialty2015 Terabit Security - All rights reserved
DDoS MITIGATION HOW IT WORKS W/O FLOWSPECDestination Remotely TriggeredBlack Hole (D/RTBH)oЕаsy of implementation and uses wellunderstood constructsoRequires high degree of co-ordinationbetween customer and provideroCumbersome to scale in a large networkperimeteroMis-configuration possible and expansive2015 Terabit Security, All rights reserved
DDoS MITIGATION HOW IT WORKS W/O FLOWSPECSource Remotely Triggered BlackHole (S/RTBH)oRFC 5635 circa 2009oRequires pre-configuration of discard routeand uRPF on all edge routersoVictim s destination address is still useableoOnly works for single (or small number)source2015 Terabit Security, All rights reserved
WHY BGP FLOWSPEC FlowSpec Leverages the BGP Control-plane to simplify the distributionof ACL's, greatly improving operations. RFC5575BGP Flowspec Inject new filter/firewall rules to all routers at the same timewithout changing router configReuse existing BGP operational knowledge and best practicesControl policy propagation via BGP communities Improve response time to mitigate DDOS attacks Same Automation as RTBH Route validation is performed for eBGP sessions.2015 Terabit Security, All rights reserved
BGP FLOWSPEC SPECIFICATIONFlowspec is very useful feature against today’sDDOS.Rule was too long, so forwarding router could notapply filter as the result not only DDOS but alsonormal traffic down.This is defined in RFC 5575 . Specific informationabout the flow can now be distributed using a BGPNLRI.AFI/SAFI 1/133: Unicast Traffic FilteringApplicationsAFI/SAFI 1/134 : VPN traffic filtering applications.BGP Flow Specification can include thefollowing informationActions are defined using BGPExtended 0080x8009123456-Destination PrefixSource PrefixIP ProtocolSource or Dest. PortDestination PortSource PortTypeTypeTypeTypeTypeType7 - ICMP Type8 - ICMP Code9 - TCP flags10 - Packet length11 - DSCP12 - Fragment Encodins-traffic-rate (set to 0 to drop all traffic)traffic-action (sampling)redirect to VRF (route targettraffic-marking (DSCP value)2015 Terabit Security, All rights reserved
BGP FLOWSPEC VENDOR SUPPORTSupported by router vendorssinceSR OS 9.0R1JUNOS 7.3ASR and CRSNE5000ESupported by DDoS protection vendorsPeakflow SP 3.5DDoS Secure 5.14.2-02015 Terabit Security, All rights reservedDefense Pro
CONTACT USDevelopment OfficeKiev, Ukrainehttps://terabitsecurity.com/Sales 1 650 460 14 86sales@terabitsecurity.comTerabit Security LLCRocklin CA, USASupportSales OfficeRocklin CA, USASupport erabitsecurity.com2015 Terabit Security, All rights reserved
KEEPCALMANDENJOYWORKRequesta Demo
REQUEST A DEMORequestA Demo2015 Terabit Security, All rights reserved
Affordable DDoS Protection The most cost-effective on-premise DDoS mitigation solution on the market! Annual subscriptions include free support and upgrades. Traffic Visualization Tool Visualization of traffic Upstream / Donwstream in bps and pps for whole network or dedicated host Short response time Immediate detection of DoS/DDoS attack in 1-2 seconds Low hardware requirements Up to 10GE .
