DDoS attacks are becoming more and more frequent. They have turned into a major concern for most Internet connected platforms. The tremendous amount of traffic generated by these attacks make it impossible to stop DDoS without either a cloud based/ISP scrubbing solution or oversized network Edge and in-house scrubbing capabilities.
XCA Edge helps in detecting DDoS and executing automated actions when they occur to make sure that their impact remains limited and scrubbing platforms can actually protect the Cutomer’s network.
XCA EDGE operates a statistical DDoS detection module that reliably identifies DDoS situations and triggers preconfigured actions.
The DDoS detection mechanisms implemented within XCA Edge are based on a set of industrial algorithms that compute real-time statistical data and execute correlation calculations with variable time windows. The output allows the XCA Edge solution to detect any sudden change in traffic behaviour, including (but not restricted to) any aggressive increase of unsolicited NTP traffic and any unusual UDP flow, abnormally high levels of SYN-flagged TCP packets, and infractions to multiple traffic ratio baselines.
Once a DDoS attack is detected, mitigation actions need to be taken. XCA Edge is designed as a generic SDN controller, meaning that it is not limited to any finite numbers of mitigation scenarios that it can execute on behalf of the user.
The way you react to DDoS is up to you:
And when in doubt, our engineering team is always ready to assist with integrating XCA Edge within complex anti-DDoS configurations.