Σειρά Συστημάτων Ασφαλείας AntiDDoS1000 DDoS

Αναζήτηση

History
Popular search
Quick access
Recommended

Σειρά Συστημάτων Ασφαλείας AntiDDoS1000 DDoS

Παρουσίαση

Παρουσίαση
Χαρακτηριστικά
Προδιαγραφές
Ενημερωτικό Υλικό
Τεχνική Υποστήριξη
Για τους Συνεργάτες

Σειρά Συστημάτων Ασφαλείας AntiDDoS1000 DDoS

The Huawei AntiDDoS1000 DDoS protection system utilizes Big Data analytics technology and supports modeling for 60+ types of network traffic to offer second-level attack response and comprehensive defense against 100+ types of attacks. The AntiDDoS1000 can be deployed on a user network using in-line mode to defend against volumetric and application attacks in real time.

When attack traffic exceeds the bandwidth or defense capability of a local scrubbing device, the AntiDDoS1000 associates with the AntiDDoS device of the upstream carrier or ISP to defend against flood attacks and guarantee service continuity.

Precise Anti-DDoS

60+ traffic models, defense against 100+ types of DDoS attacks, and second-level attack response.

In-Line Protection

In-line deployment to defend against volumetric attacks and applications.

Layered Defense

Association with anti-DDoS devices of upstream carriers or ISPs to defend against flood attacks.

Προδιαγραφές

Model	AntiDDoS1825	AntiDDoS1880
Throughput	Up to 20Gbps	Up to 80Gbps
Standard interface	2×40GE(QSFP+) + 12×10GE(SPF+) + 16×GE（RJ45）	2×100GE (QSFP28) + 2×40GE (QSFP+) + 20×10GE (SFP+)
Deployment mode	in-line; off-line (static defense); off-line (Dynamic defense)
Function	Options for detecting or cleaning
Height x Width x Depth	43.6 mm × 442 mm × 420 mm (1U)	44.4 mm × 442 mm × 600 mm (1U)
Weight	7.6kg	12kg
DDoS Defense Specifications	Defense against protocol abuse attacks Defense against Land, Fraggle, Smurf, WinNuke, Ping of Death, Teardrop, and TCP error flag attacks Web application protection Defense against HTTP GET flood, HTTP POST flood, HTTP slow header, HTTP slow post, HTTPS flood, SSL DoS/DDoS, WordPress reflection amplification, RUDY, and LOIC attacks; packet validity check. Defense against scanning and sniffing attacks Defense against address and port scanning attacks, and attacks using Tracert packets and IP options, such as IP source route, timestamp, and record route DNS application protection Defense against DNS query flood, DNS reply flood, and DNS cache poisoning attacks; source limit Defense against network-type attacks Defense against SYN flood, SYN-ACK flood, ACK flood, FIN flood, RST flood, TCP fragment flood, UDP flood, UDP fragment flood, IP flood, ICMP flood, TCP connection flood, sockstress, TCP retransmission, and TCP empty connection attacks SIP application protection Defense against SIP flood/SIP methods flood attacks, including Register, Deregistration, Authentication, and Call flood attacks; source limit Defense against UDP-based reflection amplification attacks Defense against NTP, DNS, SSDP, Chargen, TFTP, SNMP, NetBIOS, QOTD, Quake Network Protocol, Portmapper, RIPv1, and Steam Protocol reflection amplification attacks Filter IP, TCP, UDP, ICMP, DNS, SIP, and HTTP packet filters Location-based filtering Traffic block or limit based on the source IP address location Attack signature database RUDY, slowhttptest, slowloris, LOIC, AnonCannon, RefRef, ApacheKill, and ApacheBench attack signature databases; automatic weekly update of these signature databases IP reputation Tracking of most active 5 million zombies and automatic daily update of the IP reputation database to rapidly block attacks; local access IP reputation learning to create dynamic IP reputation based on local service sessions, rapidly forward service access traffic, and enhance user experiences

Enterprise

Huawei Cloud

Carrier

Consumer

Corporate

Σειρά Συστημάτων Ασφαλείας AntiDDoS1000 DDoS

Σειρά Συστημάτων Ασφαλείας AntiDDoS1000 DDoS

Προδιαγραφές