Huawei Anti-DDoS1000 Protection Systems

엔터프라이즈

Worldwide

Huawei Global - English

- South Africa - English
- Morocco - Français
- Brazil - Português
- Mexico - Español
- United Arab Emirates - English
- Saudi Arabia - English
- Australia - English
- China - 简体中文
- Hong Kong, China - English
- India - English
- Japan - 日本語
- South Korea- 한국어
- Kazakhstan - русский
- Malaysia - English
- Singapore - English
- Indonesia - English
- Thailand - ไทย
- Philippines - English
- Austria - Deutsch
- Czech - Czech
- France - Français
- Germany - Deutsch
- Greece - Ελληνικά
- Hungary - Magyar nyelv
- Italy - Italiano
- Poland - polski
- Sweden - English
- Spain - Español
- Turkey - Türkçe
- United Kingdom - English
- Ukraine - Українська мова

History
Most people search for
Quick access
Recommended

AntiDDoS1000 시리즈 DDoS 보호 시스템

Huawei AntiDDoS1000 DDoS 보호 시스템은 빅 데이터 분석 기술을 활용하고 60개 이상의 네트워크 트래픽 유형에 대한 모델링을 지원하여 2단계 공격 대응이 가능하며 100개 이상의 공격 유형에 대해 포괄적으로 방어합니다. AntiDDoS1000은 인라인 모드로 사용자 네트워크에 배포하여 실시간으로 볼륨 및 애플리케이션 공격을 방어할 수 있습니다.

공격 트래픽이 로컬 스크러빙 장치의 대역폭 또는 방어 기능을 능가하면 AntiDDoS1000은 업스트림 캐리어 또는 ISP의 AntiDDoS 장치와 연결하여 플러드 공격을 방어하고 서비스 연속성을 보장합니다.

스펙

Model	AntiDDoS1825	AntiDDoS1880
Throughput	Up to 20Gbps	Up to 80Gbps
Standard interface	2×40GE(QSFP+) + 12×10GE(SPF+) + 16×GE（RJ45）	2×100GE (QSFP28) + 2×40GE (QSFP+) + 20×10GE (SFP+)
Deployment mode	in-line; off-line (static defense); off-line (Dynamic defense)
Function	Options for detecting or cleaning
Height x Width x Depth	43.6 mm × 442 mm × 420 mm (1U)	44.4 mm × 442 mm × 600 mm (1U)
Weight	7.6kg	12kg
DDoS Defense Specifications	Defense against protocol abuse attacks Defense against Land, Fraggle, Smurf, WinNuke, Ping of Death, Teardrop, and TCP error flag attacks Web application protection Defense against HTTP GET flood, HTTP POST flood, HTTP slow header, HTTP slow post, HTTPS flood, SSL DoS/DDoS, WordPress reflection amplification, RUDY, and LOIC attacks; packet validity check. Defense against scanning and sniffing attacks Defense against address and port scanning attacks, and attacks using Tracert packets and IP options, such as IP source route, timestamp, and record route DNS application protection Defense against DNS query flood, DNS reply flood, and DNS cache poisoning attacks; source limit Defense against network-type attacks Defense against SYN flood, SYN-ACK flood, ACK flood, FIN flood, RST flood, TCP fragment flood, UDP flood, UDP fragment flood, IP flood, ICMP flood, TCP connection flood, sockstress, TCP retransmission, and TCP empty connection attacks SIP application protection Defense against SIP flood/SIP methods flood attacks, including Register, Deregistration, Authentication, and Call flood attacks; source limit Defense against UDP-based reflection amplification attacks Defense against NTP, DNS, SSDP, Chargen, TFTP, SNMP, NetBIOS, QOTD, Quake Network Protocol, Portmapper, RIPv1, and Steam Protocol reflection amplification attacks Filter IP, TCP, UDP, ICMP, DNS, SIP, and HTTP packet filters Location-based filtering Traffic block or limit based on the source IP address location Attack signature database RUDY, slowhttptest, slowloris, LOIC, AnonCannon, RefRef, ApacheKill, and ApacheBench attack signature databases; automatic weekly update of these signature databases IP reputation Tracking of most active 5 million zombies and automatic daily update of the IP reputation database to rapidly block attacks; local access IP reputation learning to create dynamic IP reputation based on local service sessions, rapidly forward service access traffic, and enhance user experiences

Model

AntiDDoS1825

AntiDDoS1880

Throughput

Up to 20Gbps

Up to 80Gbps

Standard interface

2×40GE(QSFP+) + 12×10GE(SPF+) + 16×GE（RJ45）

2×100GE (QSFP28) + 2×40GE (QSFP+) + 20×10GE (SFP+)

Deployment mode

in-line; off-line (static defense); off-line (Dynamic defense)

Function

Options for detecting or cleaning

Height x Width x Depth

43.6 mm × 442 mm × 420 mm (1U)

44.4 mm × 442 mm × 600 mm (1U)

Weight

7.6kg

12kg

DDoS Defense Specifications

Defense against protocol abuse attacks
Defense against Land, Fraggle, Smurf, WinNuke, Ping of Death, Teardrop, and TCP error flag attacks

Web application protection
Defense against HTTP GET flood, HTTP POST flood, HTTP slow header, HTTP slow post, HTTPS flood, SSL DoS/DDoS, WordPress reflection amplification, RUDY, and LOIC attacks; packet validity check.

Defense against scanning and sniffing attacks
Defense against address and port scanning attacks, and attacks using Tracert packets and IP options, such as IP source route, timestamp, and record route

DNS application protection
Defense against DNS query flood, DNS reply flood, and DNS cache poisoning attacks; source limit

Defense against network-type attacks
Defense against SYN flood, SYN-ACK flood, ACK flood, FIN flood, RST flood, TCP fragment flood, UDP flood, UDP fragment flood, IP flood, ICMP flood, TCP connection flood, sockstress, TCP retransmission, and TCP empty connection attacks

SIP application protection
Defense against SIP flood/SIP methods flood attacks, including Register, Deregistration, Authentication, and Call flood attacks; source limit

Defense against UDP-based reflection amplification attacks
Defense against NTP, DNS, SSDP, Chargen, TFTP, SNMP, NetBIOS, QOTD, Quake Network Protocol, Portmapper, RIPv1, and Steam Protocol reflection amplification attacks

Filter
IP, TCP, UDP, ICMP, DNS, SIP, and HTTP packet filters

Location-based filtering
Traffic block or limit based on the source IP address location

Attack signature database
RUDY, slowhttptest, slowloris, LOIC, AnonCannon, RefRef, ApacheKill, and ApacheBench attack signature databases; automatic weekly update of these signature databases

IP reputation
Tracking of most active 5 million zombies and automatic daily update of the IP reputation database to rapidly block attacks; local access IP reputation learning to create dynamic IP reputation based on local service sessions, rapidly forward service access traffic, and enhance user experiences

기술 지원

Login

AntiDDoS1000 시리즈 DDoS 보호 시스템

AntiDDoS1000 시리즈 DDoS 보호 시스템

고객 현장

스펙

자료

기술 지원

파트너