FortiDDoS

FortiDDoS is a line of solutions on reflection of DDoS attacks.

On March 13, 2014 the Fortinet company announced expansion of a product line of DDoS four new solutions intended for data processing centers, service providers (MSPs), medium-sized and large enterprises.

Description

New products of the company there is FortiDDoS-400B, FortiDDoS-800B, FortiDDoS-1000B and FortiDDoS-2000B are capable to detect threats and to protect the enterprises from the most destructive and difficult DDoS attacks. At the heart of novelty the innovation system developed on the analysis of behavior of traffic - for detection and reflection of DDoS attacks. In combination with the new linear ASIC processor, the solutions FortiDDoS are capable to distinguish more types of the attacks and to work 10 times quicker, than other competing solutions on detection and blocking ^[1].

Detection system and reflections of the attacks

The new behavioural system of reflection of the attacks helps solutions of FortiDDoS to detect and reflect the modern and future threats more often based on templates and intentions, than on content. As these solutions do not need signatures, they are capable to protect more effectively from zero day attacks, using dynamic monitoring of trends, instead of waiting of updating of the signature file. Very short period of blocking is reached using a chip of ASIC and allows the device to analyze the attacks continuously. It reduces the probability of false operations if the profile of assessment of behavior of traffic returns to the normal state.

Advantages

• In all products FortiDDoS it is used ^[2]. Its application excludes the overhead costs of the capacity of devices arising when using CPU or CPU/ASIC - the hybrid systems.

• The processor of the second generation FortiASIC-TP2 provides detection and reflection of DDoS attacks within one processor and processes all layers and types of traffic: 3, 4 and 7.

• The solution FortiDDoS builds base of normal operation of application, and then watches traffic. If the attack begins, FortiDDoS sees it as anomaly, and immediately takes measures for its reflection. Users are protected from the known and unknown zero day attacks as the solutions FortiDDoS do not need updating of a signature.

• FortiDDoS uses bidirectional approach of reflection of the attack of DDoS, controlling the normal entering and outbound traffic, and then, applying the system of assessment of reputation, estimates the IP addresses as "good" and harmful, taking part in the attack. "Good" traffic is passed, and the dangerous IP addresses are temporarily blocked. If at repeated of revaluation they are real threat, then are blocked already for longer period.

Specifications

• FortiDDoS-400B is full-duplex capacity of 4 Gbit, 16 ports 1 Gbps RJ-45 and SFP ports for a local network and connection of WAN with support to 1 million simultaneous connections.

• FortiDDoS-800B is full-duplex capacity of 8 Gbit, 16 ports 1 Gbps RJ-45 and SFP ports for a local network and connection of WAN with support to 2 million simultaneous connections.

• FortiDDoS-1000B is full-duplex capacity of 12 Gbit, 16 ports 10 Gbps SPF + for a local network and connection of WAN with support to 3 million simultaneous connections.

• FortiDDoS-2000B is full-duplex capacity of 24 Gbit, 16 ports 10 Gbps SPF + and 4 ports 10 Gbps SFP + with support of shunting of the line for a local network and connection of WAN with support to 6 million simultaneous connections.

The products FortiDDoS-400B, FortiDDoS-800B, FortiDDoS-1000B and FortiDDoS-2000B are available to acquisition.

Notes