Features

FlowControl XND

FlowControl XN zapewnia szybki dostęp do kluczowych informacji

ATTACK MITIGATION

The module enables the identification and mitigation of both single- and multi-vector DDoS attacks of varying intensity. Based on the FlowSpec protocol it propagates traffic filters to edge devices. The module detects:

  • Volumetric attacks, which reduce the availability of the service by saturating a network connection.
  • Protocol attacks, which use a specific property or vulnerability of a given protocol

ADVANCED DDOS ANALYSIS

The module has predefined dashboards for multi-dimensional attack analysis, presenting, among others:

  • Attack start time and attack end time in the context of the attacked service and group, to which the attacked host belongs.
  • Type of attacked service, e.g. HTTP(s), FTP, DNS.
  • Characteristics of DDoS parameters during the attack, e.g. the number of source ASNs, IP addresses, network flows, packets, bytes, and also PPF (Packets per Flow), BPP (Bytes per Packet).
xnd-ddos-advanced-ddos-analysis.png
xnd-flexible-attack-detection-rules.png

FLEXIBLE ATTACK DETECTION RULES

The XNS module monitors changes of flow characteristics using static and dynamic parameters:

  • Static parameters enable the definition of values used in the process of attack identification, e.g. the number of source IP addresses, bytes, flows.
  • Dynamic parameters enable establishing the allowable deviations from the baseline, created by comparing the current and historical traffic characteristics.
  • The possibility of adapting of limit values of parameters to individual groups of devices and applications facilitates the scaling of the system, both for the entire organisation and taking into account specific services or subnets.

Poland Office:
Goraszewska 19
02-910 Warsaw
Poland


contact@sycope.com

Ireland Office:
Alexandra House
The Sweepstakes
Ballsbridge, Dublin
D04 C7H2

Copyright 2021 Sycope Ltd. All rights reserved. Privacy policy