Академический Документы
Профессиональный Документы
Культура Документы
DATA
ISP CENTER
SATURATION
IPS
Firewall Load
Balancer
Target
Attack Traffic the APS Applications &
Good Traffic Services
SCRUBBING
DATA
CENTER
CENTER
IPS
Firewall Load
Balancer
Target
Attack Traffic the APS Applications &
Good Traffic Services
Required to handle
VOLUMETRIC attacks Subscriber Network Subscriber Network
SATURATION
Cloud Signaling Status
1. Service Operating Normally
?
4. Cloud Mitigation
Public Facing Servers Requested
5. Service Reestablished!
Note: APS does not support cloud signaling for IPv6 traffic
Settings to be discussed
later
SUCCESS!
• Connection Status displayed in banner
o “The connection to the Cloud Signaling server
was successful”
• Cloud mitigation widget displays when last
signal received
GRE tunnel
destination
GRE
GRE EP
tunnel ext0 int0
source
Arbor APS
Pravail APS
©2018 ARBOR® CONFIDENTIAL & PROPRIETARY 31
GRE Tunnel Termination Notes
ext0 int0
Pravail APS
• After the attack traffic rate falls below the 25 Mbps threshold,
the mitigation stop
– APS removes the prefix from the Active Cloud Signaling Requests page
and creates a change log entry
42
©2018 ARBOR® CONFIDENTIAL & PROPRIETARY 42
Active Cloud Signaling
• Global
mitigation may
be in process
Click to remove
Add targeted IPs
• Prefixes that APS
• Use commas to separate multiple entries. adds automatically
will not have this
• You can enter one or more prefixes in the
icon and will remain
following forms:
active until the
– IP address, such as 192.0.2.2 automatic mitigation
– Use commas to separate multiple entries ends
– CIDR, such as 192.0.2.0/24
– Host name, such as myserver.mycompany.net
• Active Cloud Signaling Requests page displays all prefixes that are
included in a request for targeted Cloud Signaling
Pu ll
Do w
n
Status information
and error messages Action button
as appropriate
Cloud mitigation is in progress. You can hover your mouse pointer over
the minigraph to view a larger version of
the graph.
To stop the mitigation requests, click
Deactivate.
• When you deactivate an active mitigation request, only the current request
is affected
– If you deactivate Cloud Signaling for a protection group, and its traffic
immediately exceeds the threshold again, APS re-activates Cloud Signaling for
that protection group
• When mitigation is requested manually, you must stop it manually
• When a mitigation is requested automatically, it stops automatically unless
you stop it manually first