PDA

View Full Version : DoS software



jechilt
11-19-2004, 11:03 PM
anyone know anything about FireSlayer(tm): DoS Protection from EV1?
I wonder if there is any other software out there that can help protect our servers?

DanB
11-20-2004, 07:22 AM
It would all depend on the amount of the attack.

Most denial of service attacks can not be combatted
at the server level. With DDoS attacks, they can easily
run 1.5 million packets per second.

Many providers are not able to handle an attack and
will have their upstream block your IP address to save
the rest of the network.

There are a few firms out there that specialize in
protecting sites from DDoS attacks.

nobaloney
11-20-2004, 10:57 AM
John,

Are you using EV1?

if so, then you automatically get FireSlayer.

While they dont' describe it, my guess is that it's something built into their routers that allows them to identify problem traffic and silently drop traffic from the IPs causing that traffic.

You can protect your servers to some extent with the APF (Advanced Policy Firewall), and we find it does help some of our clients.

but as DanB points out, it won't help much in a large DOS attack; you have to get your upstream to drop packets to protect against that.

Jeff

razorblue
12-10-2004, 09:16 AM
Hi,

The majority of DoS attacks are large scale, and will max out your port anyway, so there's no real way you can combat the problem at server level.

The only real way to do it is to null route the IP that's being attacked temporarily, or run some kind of DoS protection on the network border.

Dan