Protect your Datacenter infrastructure and deliver uptime with FortiDDoS Appliances
By Vinod Sundarraj and Hemant Jain |
Just when you thought DDoS attacks are being taken care by large cloud-based DDoS mitigation service providers, a company which ensures the reliability of companies' websites and internet-connected services had a bit of online trouble itself 1. And this is not the first time that this kind of outage has happened with this provider and it has impacted even cloud service providers 2. Why is that data centers do not have adequate technology to block 754 million packets per second coming from just over 300,000 IPs is simply because of using traditional technology and manually operated scrubbing centers with large staff that add and subtract rules based on attacks on their routers and switches. This kind of equipment is not geared for variety of DDoS attacks that today’s hackers can generate by just switching a few bits in packets here and there.
The nature of DDoS attacks is shifting, and while some organizations might believe that DDoS is a thing of the past, this is not the case. Aside from volumetric floods, attackers are focusing on more sophisticated, harder to mitigate application-layer (L7) DDos attacks, leveraging sophisticated bots to launch attacks, and use sophisticated attack vectors such as burst attacks, SSL floods, and carpet-bombing attacks. In fact on June 21st Akamai reported one of the largest ever DDoS attacks based on packet rate (PPS). In this case attackers knew that many legacy DDoS appliances cannot handle a large scale packets-per-second attack.
FortiDDoS appliances from Fortinet are custom hardware-logic-based appliances architected from ground-up to handle large and sophisticated DDoS attacks and once deployed and configured – do not require manual operation to block such attacks.
With the new E-series appliances, a single FortiDDoS 2000E appliances can automatically mitigate up to 280 Gbps attacks and multiple of these appliances can be deployed together to thwart larger attacks. Customers can centrally manage the FortiDDoS appliance using a FortiDDoS Central Manager. See this video.
Attacks on DNS infrastructure of a data center is an easy way to bring down services of a large enterprise such as was seen during the Dyn attack. Patented DNS DDoS attack mitigation in FortiDDoS makes it the best of the breed high-performance device with ability to handle up to 12 M QPS under attack along with the ability to serve queries from its hardware-cache. See this video.
Reflection attacks including those in Network Time Protocol (NTP) are yet another menace for data centers are to handle. FortiDDoS has built-in header, state, and rate anomalies for this NTP protocol to avoid manual intervention under large attacks. See this video.
With online education becoming more important due to shelter-at-home practices, it becomes paramount to keep the educational infrastructure available. FortiDDoS has been helping many school districts and universities remain online despite prevalent mostly insider attacks on the infrastructure. See this video.
DDoS attacks can be business impacting and costs can go up to millions of dollars, more importantly they hurt the company’s brand. To combat these attacks, it is imperative that organizations protect their IT infrastructure with a purpose-built DDoS solution. Fortinet’s FortiDDoS can be deployed on-premises or cloud, so customers can be secure and productive. Many customers rely on Fortinet to help them prevent downtime and increase business efficiency without compromising security and compliance.
Learn how FortiDDoS appliances provide increased visibility and control across data center infrastructures, enabling secure applications and connectivity from data center to cloud. See here.
Engage in our Fortinet user community (Fuse). Share ideas and feedback, learn more about our products and technology, or connect with peers.
1 Security provider goes down, and takes the internet's security blanket with it
2 Cloud Service Provider customers were hit by severe outages
