[121127] in North American Network Operators' Group
RE: D/DoS mitigation hardware/software needed.
daemon@ATHENA.MIT.EDU (Stefan Fouant)
Mon Jan 11 08:46:28 2010
From: "Stefan Fouant" <sfouant@shortestpathfirst.net>
To: "'Hank Nussbacher'" <hank@efes.iucc.ac.il>,
"'jul'" <jul_bsd@yahoo.fr>
In-Reply-To: <alpine.LRH.2.00.1001111138480.16793@efes.iucc.ac.il>
Date: Mon, 11 Jan 2010 08:45:45 -0500
Cc: 'NANOG' <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> -----Original Message-----
> From: Hank Nussbacher [mailto:hank@efes.iucc.ac.il]
> Sent: Monday, January 11, 2010 4:40 AM
> To: jul
> Cc: NANOG
> Subject: Re: D/DoS mitigation hardware/software needed.
>
> On Mon, 11 Jan 2010, jul wrote:
>
> > Known leader of the clean-pipe solution is Prolexic
> > http://www.prolexic.com/
> >
> > Akamai and Verisign also tries to go on this market
> > http://www.akamai.com/security (through CDN)
> > http://www.verisign.com/internet-defense-network/index.html
>
> Indeed, these 3 also ended up on my shortlist after much research.
> Each
> has areas they are weaker in than their competitors but they are all
> worthy.
If you're connected to Level 3 in any capacity, they have a reseller
agreement with Prolexic and can offer REALLY aggressive pricing. I really
liked their offering.
If anyone is interested, I did pretty exhaustive research into the Service
Provider marketplace last summer (before Verisign came out with their VIDN).
I've got some slides which outline the costs, mitigation capacity, etc. of
many different providers. The provider option isn't always the cheapest
when compared to DIY factored in over a 3-5 year lifespan.
Stefan Fouant, CISSP, JNCIE-M/T
www.shortestpathfirst.net
GPG Key ID: 0xB5E3803D
