NSE7000 Network Security Enforcement
For large-scale networks where multiple 10G and 100G ports are at play, Red Armor NSE7000 DDoS enforcement shuts down escalating DDoS attacks that include high-rate volumetric and network protocol attacks. The NSE7000 is a 1RU 450W enforcement engine that performs fine-grained in-line traffic classification and filtering on L3/L4 fields at 150Mpps per 100Gbps of throughput. The NSE7000 uses BGP Flowspec (RFC5575) rules or REST calls to deny or rate-limit traffic destined for the gateway router. It enforces IP src/dst, TCP/UDP src/dst, TCP flags, fragmentation bits and packet length. In addition, it can rate-limit every rule to help when there is uncertainty whether an attack is legitimate or a false positive.
|Categories||Security > Infrastructure Security, FW, IPS, DDoS|
Security > Security Management and Analytics
Use of the SDxCentral service directory is governed by our Terms of Service, including without limitation those sections under the headings "CONTENT", "LICENSING AND OTHER TERMS APPLYING TO CONTENT POSTED ON THE SDXCENTRAL SITES", "INDEMNITY; DISCLAIMER; LIMITATION OF LIABILITY" AND "COPYRIGHTS". Under no circumstances will SDxCentral be liable in any way for any Content, including, but not limited to, liability for any errors or omissions in any Content or for any loss or damage of any kind incurred as a result of the use of any Content posted, emailed or otherwise transmitted via the Sites.