[176666] in North American Network Operators' Group
Re: Carrier-grade DDoS Attack mitigation appliance
daemon@ATHENA.MIT.EDU (John Schiel)
Mon Dec 8 16:37:11 2014
X-Original-To: nanog@nanog.org
Date: Mon, 08 Dec 2014 14:38:11 -0700
From: John Schiel <jschiel@flowtools.net>
To: nanog@nanog.org
In-Reply-To: <6F2BC9429CDDC6438D1FE460D2258BB401B1994E66@EXCHANGENODE1.ritter.net>
Errors-To: nanog-bounces@nanog.org
On 12/08/2014 11:53 AM, Tony McKay wrote:
> Does anyone on list currently use Peakflow SP from Arbor with TMS, and is it truly a carrier grade DDoS detection and mitigation platform? Anyone have any experience with Plixir?
Peakflow SP with the TMS works quite well. Can be very fast once a
threat is discovered, depending on how you set up the mitigation. If you
use auto mitigate and anycast BGP announcements, you can get a base
mitigation going within seconds.
Although it works quite well, it can be a bit pricey. I've seen but not
yet played with DefensePro from Radware. I thought they also had premise
based unit like Arbor's Pravail but I can't be sure on that.
--John
>
> Tony McKay
> Dir. Of Network Operations
> Office: 870.336.3449
> Mobile: 870.243.0058
> -The boundary to your comfort zone fades a little each time you cross it. Raise your limits by pushing them.
>
> This electronic mail transmission may contain confidential or privileged information. If you believe that you have received this message in error, please notify the sender by reply transmission and delete the message without copying or disclosing it.
>
>
>
> -----Original Message-----
> From: NANOG [mailto:nanog-bounces@nanog.org] On Behalf Of Mohamed Kamal
> Sent: Sunday, December 07, 2014 2:10 PM
> To: nanog
> Subject: Carrier-grade DDoS Attack mitigation appliance
>
>
> Have anyone tried any DDoS attack mitigation appliance rather than Arbor PeakFlow TMS? I need it to be carrier-grade in terms of capacity and redundancy, and as far as I know, Arbor is the only product in the market which offers a "clean pipe" volume of traffic, so if the DDoS attack volume is, for example, 1Tbps, they will grant you for example 50Gbps of clean traffic.
>
> Anyway, I'm open to other suggestions, and open-source products that can do the same purpose, we have network development team that can work on this.
>
> Thanks.
>
> --
> Mohamed Kamal
> Core Network Sr. Engineer
>