Mitigation is a term employed to design the means and measures in place that reduce the negative effects of a DDoS attack. Mitigation consists of filtering illegitmate traffic and hoovering it up with the VAC, while letting legitmate packets pass.
The VAC consists of multiple devices, each with a specific function to block one or more types of attack (DDoS, Flood, etc.). Depending on the attack, one or more defense strategies may be put in place on each VAC device.
Internet-based services are used without any problem. The traffic passes through the backbone of our network then arrives at the datacenter. Finally it is handled by the server that sends back the responses over the internet etc...
The attack is launched via the internet and on the backbone. Given the surplus capacity of the bandwidth on the backbone, the attack will not cause saturation on any service. The attack reaches the server, which begins to handle the initial attack. At the same time, analysis of the traffic flags up that an attack is underway and thus triggers the mitigation.
Between 15 and 120 seconds after the attack has started, the mitigation is activated. The traffic coming in towards the server is sucked up by the VAC points. The attack is blocked without duration or size limits, nor any other type of limit. Legitimate traffic passes through the VAC to finally reach the server. The server responds directly without passing through the VAC again. This process is called auto-mitigation.
Generating an attack is costly, and even more so when it is ineffective. After a certain time has passed, the attack will come to an end. Auto-mitigation is maintained for 26 hrs after the attack has ended. This means any new attack that occurs within a few minutes, a few hours or 24 hours will be blocked. After just 26 hours, auto-mitigation is disabled, but it remains ready to be reactivated on detection of a new attack.
Get your server protected by SEC-LAYER and never be taken down again!
With over 600Gbps protection you can be assured your services wont be affected by a DDOS attack and best of all it's FREE at VILAYER.
What is SEC-LAYER ?
SEC-LAYER protects your server automatically by analysing each packet that is sent to your IP and PORT. Once unusual packets are detected those packets are then sent through a VAC based system while normal traffic continues to your server.Find out more