Radware’s DefensePro DDoS protection was the first security-focused SDN application we saw that was shipping and deployable. In this installment of DemoFriday™, Lior Cohen and Ehud Doran of Radware demonstrate how SDN technology adaptively mitigates DDoS attacks.
DDoS Protection SDN Networking Demo Synopsis:
Radware SDN applications leverage SDN architecture to deliver scalable, accurate, network-wide – and potentially automated – ADC and attack mitigation services. Radware’s adaptive DDoS protection solution, enables network operators to leverage DDoS protection as a network service. It features an adaptive behavioral-based DDoS attack detection engine and employs a traffic diversion mechanism for attack mitigation. Designed as part of the SDN Radware application framework, the Adaptive DDoS Protection solution can operate in any SDN-enabled network infrastructure.
Combined with Radware DefensePro attack mitigation appliances, the solution can be implemented by itself (no need for complete SDN) at the network edge with a pair of OpenFlow switches, enabling high-speed DDoS protection without affecting the existing network design.
The solution also can be applied to multiple network edge locations of a global network where all attack mitigation functionality is placed in a dedicated scrubbing center – to which traffic can instantly be diverted. The solution also can be deployed inside an SDN datacenter LAN as a native multitenant network service.
DDoS Protection demo highlights:
- DDoS protection service insertion process
- How the service can be applied to different protected resources
- Sunny day traffic baseline analysis
- How suspicious traffic is identified, diverted to relevant attack mitigation resources and blocked
- Various views of the SDN application user interface
Watch the DemoFriday full presentation featuring Radware, or check out these additional resources that can be found above: