J9九游会AG

J9九游会AG首页  业(ye)务领域(yu)
流量清洗

DDOS的由来:

DDoS由DoS攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)演变而(er)来(lai),这(zhei)(zhei)种攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)是(shi)黑(hei)客(ke)利用(yong)(yong)在(zai)已经侵(qin)入并已控(kong)制(可能是(shi)数百,甚至成千上万台(tai))的(de)(de)机(ji)器(qi)上安(an)装DoS服(fu)务(wu)程序(xu),这(zhei)(zhei)些被控(kong)制机(ji)器(qi)即(ji)是(shi)所(suo)谓(wei)的(de)(de)“傀儡计算机(ji)”(zombie)。它们(men)(men)等待来(lai)自中(zhong)央(yang)攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)控(kong)制中(zhong)心(xin)的(de)(de)命令。中(zhong)央(yang)攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)控(kong)制中(zhong)心(xin)在(zai)适(shi)时(shi)启动(dong)全体受控(kong)主机(ji)的(de)(de)DoS服(fu)务(wu)进程,让它们(men)(men)对(dui)一(yi)个特定目标发(fa)送尽可能多(duo)的(de)(de)网络访问请求,形成一(yi)股DoS洪流(liu)冲(chong)击(ji)(ji)(ji)目标系(xi)统,猛烈(lie)的(de)(de)DoS攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)同一(yi)个网站。在(zai)寡不(bu)敌众(zhong)的(de)(de)力(li)量抗衡下,被攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)的(de)(de)目标网站会很(hen)(hen)快失去(qu)反应而(er)不(bu)能及时(shi)处理(li)正常的(de)(de)访问甚至系(xi)统瘫痪(huan)崩溃(kui)。因(yin)为攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)来(lai)源于(yu)(yu)(yu)安(an)装在(zai)网络中(zhong)的(de)(de)多(duo)台(tai)机(ji)器(qi)上,所(suo)采用(yong)(yong)的(de)(de)这(zhei)(zhei)种攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)方式很(hen)(hen)难(nan)被攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)对(dui)象察(cha)觉,直到攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)者发(fa)出(chu)统一(yi)的(de)(de)攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)命令,这(zhei)(zhei)些机(ji)器(qi)才(cai)同时(shi)发(fa)起进攻(gong)(gong)(gong)(gong)(gong)。黑(hei)客(ke)透过隐(yin)秘的(de)(de)通信渠道(dao)对(dui)“傀儡计算机(ji)”下达(da)指令,借此发(fa)动(dong)大规模的(de)(de)联合攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)。由于(yu)(yu)(yu)此类(lei)攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji)是(shi)通过组(zu)织遍布(bu)于(yu)(yu)(yu)广大网络上的(de)(de)大量计算机(ji)所(suo)发(fa)动(dong)的(de)(de)联合攻(gong)(gong)(gong)(gong)(gong)击(ji)(ji)(ji),因(yin)此采用(yong)(yong)简单(dan)的(de)(de)辨别和隔离技术(shu)是(shi)不(bu)能阻挡(dang)它们(men)(men)的(de)(de)。大部分情况下,很(hen)(hen)难(nan)将合法(fa)流(liu)量和非法(fa)流(liu)量区别开来(lai)。

流量清洗的定义

流(liu)(liu)量(liang)清(qing)(qing)(qing)洗(xi)(xi)顾名思义就是对网络(luo)中存在的异(yi)常流(liu)(liu)量(liang)进行清(qing)(qing)(qing)洗(xi)(xi),保(bao)证正常流(liu)(liu)量(liang)的传输和业务(wu)的连续性(xing)。主要使用(yong)专业流(liu)(liu)量(liang)检(jian)测(ce)&清(qing)(qing)(qing)洗(xi)(xi)设(she)备(bei)完(wan)成(cheng)这(zhei)样(yang)的工(gong)作,检(jian)测(ce)设(she)备(bei)通过流(liu)(liu)量(liang)阈值、报文(wen)特征、源IP行为模型等检(jian)测(ce)机制判定流(liu)(liu)量(liang)是否正常,当确(que)认是异(yi)常流(liu)(liu)量(liang)时(shi)则联(lian)动(dong)清(qing)(qing)(qing)洗(xi)(xi)设(she)备(bei)完(wan)成(cheng)引(yin)流(liu)(liu)、清(qing)(qing)(qing)洗(xi)(xi)、回注的清(qing)(qing)(qing)洗(xi)(xi)动(dong)作,确(que)保(bao)网络(luo)的可用(yong)性(xing)。

流量清洗的接口与协议

流量清洗解决方案可以满足大多数城域网环(huan)境下的应用。提供千兆(zhao)以太(tai)网接(jie)(jie)口(kou)(kou)(kou)、万兆(zhao)以太(tai)网接(jie)(jie)口(kou)(kou)(kou)、POS接(jie)(jie)口(kou)(kou)(kou)等(deng)全面的接(jie)(jie)口(kou)(kou)(kou)类型、支持(chi)BGP、MPLSBGP、OSPF、RIP等(deng)丰富(fu)的路由协议,支持(chi)MPLS VPN、策略路由、GRE VPN、双链路等(deng)多种流量回注方式。

专业的安全服务

依托多年来服务于能够(gou)为用(yong)户(hu)提供最佳(jia)的(de)安全(quan)体验,包括事(shi)前攻击(ji)(ji)检测、事(shi)中攻击(ji)(ji)防护(hu)、事(shi)后(hou)安全(quan)事(shi)件(jian)处(chu)理分析(xi)。

解(jie)决方案:

提供的服务(wu)包括:网络业务(wu)流量(liang)监控和分析、安(an)全(quan)基线制定、安(an)全(quan)事件通告、异常(chang)流量(liang)过滤(lv)、安(an)全(quan)事件处理报告等。“流量(liang)清(qing)洗解决方(fang)案”的实(shi)施,减轻了来(lai)自于DDoS攻(gong)击流量(liang)对企(qi)业网络造成的压(ya)力,提升宽带(dai)利用的有效性;保护(hu)企(qi)业网络免受来(lai)自互(hu)联网的攻(gong)击,提高网络性能,实(shi)现其核(he)心(xin)业务(wu)的永续,保障(zhang)其核(he)心(xin)竞争(zheng)力。

点击进入工作邮箱!

微信公众号