DDoS Defense
AT&T DDoS Defense, an option available to customers of AT&T Internet Protect, detects and mitigates DDoS attacks. DDoS identification and mitigation takes place within AT&T's IP backbone providing you with increased protection from malicious traffic before it reaches your network. DDoS Defense consists of a detection device that examines your net flow data. If a denial of service attack is detected, the traffic will be routed to a network mitigation farm, where the malicious DDoS attack packets are identified and dropped while the valid traffic is allowed to pass to you.
DDoS Defense consists of a network detection facility that monitors your network traffic for a specified set of IP addresses to be protected. Depending on your configuration, a shared or dedicated set of network mitigation devices are available to scrub your traffic if a denial of service attack is detected. With the Shared configuration, traffic is routed to a farm of DDoS mitigation devices that are shared among multiple customers. With the Dedicated configuration, traffic is routed to a set of DDoS mitigation devices dedicated to you. Dedicated clients can also choose an overflow option, where AT&T utilizes the shared scrubbing devices if the size of the attack exceeds the capacity of the Dedicated service that you have purchased. When the detector identifies a DDoS attack, an alarm is sent to both an AT&T operations center and to you notifying you of the detected attack. Concurrently, AT&T will notify you of the attack. AT&T will reroute traffic directed at the server under attack to the network scrubbing facility within the AT&T IP Backbone. This traffic will then be scrubbed dropping the DDoS attack traffic and passing the valid traffic to your access router, while traffic destined to servers not under attack continues to flow directly to your network. For customers interested in a more flexible option than the Shared or Dedicated configuration, AT&T offers a Subscription service. This level of service requires you to detect attack traffic via your company's edge-based solutions, such as an IPS, IDS, or other detection technology. Using the AT&T DDoS Mitigation Portal, a web based tool, which is designed to divert the traffic to be filtered in the Shared scrubbing facility, you mitigate the attack. Once the attack has ended, you stop the mitigation using the AT&T DDoS Mitigation Portal.
- Provides a robust, all inclusive information security portal
- Notifies via Email and/or page on critical alerts, advisories and attacks
- Provides anomaly detection, packet scrubbing, traffic analysis, and e-mail trap alerts
- Includes equipment, monitoring and management
- Monitors a specified IP address range
- Includes web portal access for service and status reporting information, including anomaly reporting, historical archival, dark address analysis, and status page
- Detects the presence of a DDoS attack
- Blocks malicious packets in real-time while allowing the flow of legitimate business traffic
- Stops denial of service traffic floods within AT&T's network before they choke your private network
- Allows you to be proactive vs. reactive when protecting your network against malicious intruders and unauthorized activities
Contact Us
Contact us online about DDoS Defense or call us at 800-248-3632.
