From: Security Focus (Security.Focus@comcast.net)
Date: Thu Nov 09 2006 - 23:19:08 EST
The best standalone solution that I've seen in action for an ISP environment
is Cisco/Riverhead. I was involved in a case where a world renowned
DNS/SpamBlockList provider was under a relentless attack that overwhelmed
the bastion network we developed for them, including our own proprietary
ddos defense solution. A top 3 global ISP redirected the traffic far
upstream through Riverhead and successfully cleansed the traffic.
Nevertheless, that was an extremely expensive undertaking, but worth it for
large enterprises.
Prolexic offers a similar solution for a fraction of the price. It's pretty
impressive as well, and offered as an on demand service. I believe they OEM
this to smaller ISPs as well as sell directly to upper-midsize companies.
Matt Gair
Former COO & Co-Founder
Melior, Inc.
www.ddos.com
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Talisker
Sent: Thursday, November 09, 2006 1:00 PM
To: 'SecurityPractitioner'; pen-test@lists.securityfocus.com
Subject: RE: DDOS Products
Shawn
You'll find the attack mitigation systems here
http://www.securitywizardry.com/idsdosmit.htm
Though most Network IPS also have excellent DDOS mitigation as well, as well
as the added bonus of excellent content signatures, these days the
distinction between the categories is more blurred
http://www.securitywizardry.com/inline.htm
Also worthy of note are QOS tools such as PacketShaper etc.
Remember to place them far enough upstream where they can be effective.
They serve little purpose if your link from the ISP is taken out
Best Regards
Andy Cuff
Chief Technology Officer
Computer Network Defence Ltd
http://www.securitywizardry.com
07010 709014
> -----Original Message-----
> From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
> On Behalf Of SecurityPractitioner
> Sent: 08 November 2006 10:29
> To: pen-test@lists.securityfocus.com
> Subject: DDOS Products
>
> Hi,
>
> Can anyone list the DDOS products for Service
> Provider kind of
> environment????
>
> Thanks in Advance,
>
> Shawn Peter
>
>
>
>
> __________________________________________________________
> Yahoo! India Answers: Share what you know. Learn something new
> http://in.answers.yahoo.com/
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600
> 000008bOW
> ------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=70160000
0008bOW
------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:19 EDT