The recent State of the Internet/Security Report from Akamai shows that the number of Distributed Denial of Service (DDoS) attacks continues to increase—rising 14% over last year. This might not seem like a huge change, but it is on top of the remarkable year-over-year increase of 71% that was reported the previous year, so clearly the threat is not going away. In fact, increasing frequency only tells part of the story—these assaults are also becoming more and more sophisticated.
DDoS attacks can be enormously disruptive, knocking websites offline, bringing business to a halt, and diverting resources from other areas to counteract the assault and deal with the aftermath. Unfortunately, DDoS attacks are also incredibly easy—and relatively inexpensive—to launch. Some nefarious players have even gone so far as to set up DDoS-as-a-Service operations.
To help our Service Provider and large enterprise customers counteract these all-too-prevalent threats, F5 is partnering with Flowmon Networks, a highly regarded vendor of advanced monitoring and security solutions for network infrastructures.
A joint solution integrates Flowmon DDoS Defender™ and F5 DDoS Hybrid Defender™ (DHD) to deliver a powerful set of capabilities to customers. DDoS Defender learns and observes network traffic to detect violations and anomalies; then, when a DDoS attack is detected, it notifies and triggers DDoS Hybrid Defender. At that point, DHD automatically scales to shut down the high-capacity attack before it can overwhelm load balancers, firewalls, or even the entire network.
Throughout the attack, DHD incorporates a high degree of automation to immediately invoke mitigation capabilities, alert security admins, and configure or adjust DDoS thresholds as traffic patterns change—all without affecting legitimate traffic. And while automation is critical to implementing a speedy and comprehensive response, it is also an important piece of the cost-savings that our joint solution delivers: When DDoS Defender and DHD are doing their thing, an organization’s other resources (people, but also infrastructure and compute resources) can remain focused on driving value for the business.
The tight interaction between our two solutions creates a complex detection and mitigation ecosystem that requires seamless cooperation between Flowmon and F5. In delivering that seamless integration, we give our customers the fastest automated DDoS mitigation available, and we do it for significantly less cost than outdated competitive alternatives. The solution also supports F5’s BIG-IP Advanced Firewall Manager (AFM) as well.
While the joint solution was initially designed for Service Providers, which are typically responsible for protecting high-speed networks and mitigating DDoS attacks across multiple peering/transit links, it is quickly becoming popular with some large enterprise customers as well. It is the enterprise, after all, that is typically the primary DDoS target—and this joint solution enables a concerned organization to cost-effectively take control of its own security.
Learn more:
- Joint Solution Demo on DevCentral
- How to Configure Flowmon DDoS Defender and F5 BIG-IP AFM
- Solution Brief – High-Performance DDoS Protection
- Flowmon Implementation Guide
About the Author
Related Blog Posts
The everywhere attack surface: EDR in the network is no longer optional
All endpoints can become an attacker’s entry point. That’s why your network needs true endpoint detection and response (EDR), delivered by F5 and CrowdStrike.
F5 NGINX Gateway Fabric is a certified solution for Red Hat OpenShift
F5 collaborates with Red Hat to deliver a solution that combines the high-performance app delivery of F5 NGINX with Red Hat OpenShift’s enterprise Kubernetes capabilities.
F5 accelerates and secures AI inference at scale with NVIDIA Cloud Partner reference architecture
F5’s inclusion within the NVIDIA Cloud Partner (NCP) reference architecture enables secure, high-performance AI infrastructure that scales efficiently to support advanced AI workloads.
F5 Silverline Mitigates Record-Breaking DDoS Attacks
Malicious attacks are increasing in scale and complexity, threatening to overwhelm and breach the internal resources of businesses globally. Often, these attacks combine high-volume traffic with stealthy, low-and-slow, application-targeted attack techniques, powered by either automated botnets or human-driven tools.
Volterra and the Power of the Distributed Cloud (Video)
How can organizations fully harness the power of multi-cloud and edge computing? VPs Mark Weiner and James Feger join the DevCentral team for a video discussion on how F5 and Volterra can help.
Phishing Attacks Soar 220% During COVID-19 Peak as Cybercriminal Opportunism Intensifies
David Warburton, author of the F5 Labs 2020 Phishing and Fraud Report, describes how fraudsters are adapting to the pandemic and maps out the trends ahead in this video, with summary comments.