Time to research IPS , intrusion PREVENTION systems ... In the past I have used a TopLayer IPS 5500 which did a great job of dropping malicious packets before they reached the servers. The DDOS traffic will still utilize some bandwidth in the pipe, but not be able to create the DOS havoc intended because their payload does not reach the targets.
On Thu, Jan 20, 2011 at 1:55 PM, Greg Olson <[email protected]> wrote: > Hey guys and gals, > Just wondering what you guys are doing to protect yourself against a DDOS > attack? I was helping a buddy over the weekend who's company was getting > attacked, and it was an eye opening experience in just how un-prepared most > companies are for this. The attackers we're coming from hundreds of machines > across Europe, and we're doing a syn-flood\http get overload attack. While > the syn-flood was relatively easy to mitigate, the http get flood was not. > In the end they had to sign on with a scrubbing service at a hefty price to > get it cleaned up. It's defiantly made me look at what I can do pro-actively > in setting up the right gear to control as much as I can when it gets to our > local network, but I'm thinking by the time it gets to us, its too late, as > they could easily overwhelm a gig pipe with the right attack. > > Thoughts? > > Thanks, > -Greg > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
