On Thu, Apr 11, 2013 at 10:57:55AM +0200, James Howlett wrote: > I have a small network with J6350 as a border router (BGP) and two > SRX240H in a cluster. Since few days my network is a victim of DDoS > attacks. Majority of them are high pps count attacks. > Are there any methods to protect my network against such attacks. My > J-series can handle quite a lot of pps, but my SRX die after getting > more than 8000 new sessions per second. > > Is there anything i can do here?
Definitely SCREENs, as other folks have said. However, in the corner case where you're getting traffic for a particular service or destination IP that isn't in use (maybe not in this instance), a quick way of protecting the traffic from hitting the flow module is to use a firewall filter with a discard action for that traffic. Just something to keep in your toobox.. - Mark -- Mark Kamichoff [email protected] http://www.prolixium.com/
signature.asc
Description: Digital signature
_______________________________________________ juniper-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/juniper-nsp
