https://community.cisco.com/t5/network-security/case-study-required/m-p/710643#M88056 <HTML><HEAD></HEAD><BODY><P>Effectively protecting against a DDoS at the endpoint is impossible since your bandwidth would already be overwhelmed at that time. To protect against a DDoS you'll need the ISP's assistance (so they can re-route &amp; scrub the attack before it floods your ingress point(s)).</P><P></P><P>Plug: I work for AT&amp;T and we provide a DDoS mitigation service. Traffic inbound for your ingress point(s) are re-routed on the AT&amp;T backbone to a scrubbing facility. After the 'bad' traffic is scrubbed, the 'good' traffic is routed back to you. I'm vastly oversimplifying but the point is your ingress point(s) are not overwhelmed even in the face of an attack which ordinarily would take you down.</P></BODY></HTML> Fri, 15 Dec 2006 17:28:53 GMT attmidsteam 2006-12-15T17:28:53Z https://community.cisco.com/t5/network-security/case-study-required/m-p/710642#M88055 <P>Can some one on the list point me to a Cisco case study where IPS is successfully used as a detection and mitigation device in dos attacks?</P><P></P><P>Is IPS necessary the best way for protecting the ingress of the network from DDOS or DOS ATTACKS? </P><P></P><P>What other ways are there to guard the internet bandwidth from Denial of service?</P> Sun, 10 Mar 2019 10:22:30 GMT https://community.cisco.com/t5/network-security/case-study-required/m-p/710642#M88055 darin.marais 2019-03-10T10:22:30Z https://community.cisco.com/t5/network-security/case-study-required/m-p/710643#M88056 <HTML><HEAD></HEAD><BODY><P>Effectively protecting against a DDoS at the endpoint is impossible since your bandwidth would already be overwhelmed at that time. To protect against a DDoS you'll need the ISP's assistance (so they can re-route &amp; scrub the attack before it floods your ingress point(s)).</P><P></P><P>Plug: I work for AT&amp;T and we provide a DDoS mitigation service. Traffic inbound for your ingress point(s) are re-routed on the AT&amp;T backbone to a scrubbing facility. After the 'bad' traffic is scrubbed, the 'good' traffic is routed back to you. I'm vastly oversimplifying but the point is your ingress point(s) are not overwhelmed even in the face of an attack which ordinarily would take you down.</P></BODY></HTML> Fri, 15 Dec 2006 17:28:53 GMT https://community.cisco.com/t5/network-security/case-study-required/m-p/710643#M88056 attmidsteam 2006-12-15T17:28:53Z https://community.cisco.com/t5/network-security/case-study-required/m-p/710644#M88057 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Have a look at Cisco's Guard DDoS Mitigation Appliances:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/ps5888/index.html" target="_blank">http://www.cisco.com/en/US/products/ps5888/index.html</A></P><P></P><P>HTH</P><P>Andrew.</P><P></P></BODY></HTML> Tue, 19 Dec 2006 14:32:56 GMT https://community.cisco.com/t5/network-security/case-study-required/m-p/710644#M88057 andrew.burns 2006-12-19T14:32:56Z https://community.cisco.com/t5/network-security/case-study-required/m-p/710645#M88058 <HTML><HEAD></HEAD><BODY><P>Check following Cisco IPS 4200 Series Sensors</P><P>Case Studies</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/prod_case_studies_list.html" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/prod_case_studies_list.html</A></P><P>M.</P></BODY></HTML> Tue, 19 Dec 2006 14:40:03 GMT https://community.cisco.com/t5/network-security/case-study-required/m-p/710645#M88058 m.sir 2006-12-19T14:40:03Z