Servicepipe DosGate

Main article: Firewall

2025

Ability to assign a role with Read-Only rights to administrators

Servicepipe has released an update to the DosGate system. Key changes affected strengthening the security of DNS services and expanding the access control capabilities of administrators. The company announced this on November 12, 2025.

DosGate is an adaptive system for protecting IT infrastructure from DDoS attacks and network threats. Thanks to its high performance, the product is able to handle large amounts of traffic, repel attacks at L3-L7 levels and ensure the stable operation of critical services.

To counter DNS attacks, DosGate has added a mechanism that verifies the authenticity of DNS packet sources. It allows you to automatically filter out traffic with fake addresses and prevent attacks directed at DNS servers. Thanks to this, DosGate provides reliable filtering of malicious traffic and the stability of the DNS infrastructure even with large-scale attacks.

In addition, DosGate has the ability to assign administrators a role with Read-Only rights: now you can create users who have access to the interface and monitoring data, but cannot make changes to the settings.

In parallel, the Servicepipe team carried out a comprehensive optimization of the system core and key filtering mechanisms - prefix sets - and TCPauthentications ratings, which allows, even at high loads, to provide an instant response to attacks and eliminate the impact of filtering on the performance of legitimate services.

DNS is one of the critical points of any digital infrastructure. We have strengthened DosGate so that attacks on DNS are no longer a problem for business. In addition, as a result of the update, access control has become as controlled and secure as possible, "said Mikhail Khlebunov, Product Director of Servicepipe. - Our goal is to make modern cyber protection predictable, stable and accessible to any infrastructure that requires high reliability.

As part of the solution for telecom operators

On October 7, 2025, Servicepipe introduced a solution for telecom operators - a control panel that allows DosGate and FlowCollector to provide DDoS protection to end customers. Read more here.

Based on the service of protection against DDoS, bots and other automated L3-L7 attacks

Servicepipe solutions will allow Innostage to comprehensively protect customers from DDoS, bots, and other automated L3-L7 attacks. InnoSTage announced this on July 11, 2025. Read more here.

DosGate Autopilot module

Servicepipe has released the DosGate Autopilot module, which radically changes the approach to DDoS protection. Now the solution for protecting against network attacks does not just respond to anomalies in traffic - it itself creates protection at the time of the attack, analyzing the data flow in real time and forming point filtering rules without the participation of an engineer. ServicePipe announced this on May 28, 2025.

Autopilot is built into the adaptive IT infrastructure protection system against DDoS attacks and DosGate network threats and runs on behavioral analysis, signatures and native rate-limit metrics. At the time of the attack, it automatically determines its vector, selects the necessary measures and generates a set of interconnected rules. The decision on the proposed rules is made by the network engineer if he agrees with the recommendations - the new filtering rules immediately come into force. The system blocks botnets, floods, all types of amplifications, effectively countering a large range of DDoS threats, including complex multi-vector attacks - quickly, accurately and with minimal risk of false positives. The proven efficacy was 99.99%.

Unlike most solutions in the market, where the administrator is forced to manually collect dumps and register filters, DosGate Autopilot can do everything on its own. This is not a countermeasure "just in case" and not a basic ACL, but a living mechanism that understands traffic, creates rules for it and places them in the right order to stop the attack immediately.

We are confident that in a year or two, when the DDoS attack protection system itself offers options for configuring filtering rules for a specific attack, it will become a market standard, "said Mikhail Khlebunov, director of products at Servicepipe.

DosGate Autopilot is ready for industrial use and is available for integration into any infrastructure - from banking networks to cloud platforms.

Compatibility with the Rubezh-T platform

The company Servicepipe has completed testing servers Russian of production in order to create, together with IT the integrator "" Telecom Exchange based on them, a PAC for layered protection against. DDoS-attacks The company has checked the compatibility of its DosGate traffic filtering product and the hardware platform "Rubezh-T" manufactured by the Russian company. Kraftway

In order to create a fully domestic version of the PAC, the Kraftway Rubezh-T network device will L3-L7 be used to protect against DDoS attacks. In addition to solutions for filtering traffic and detecting network, attacks Rubezh-T can also be used to create on the basis of Russian (ON firewalls firewalls), security gateways VPN , etc.

Servicepipe is also working to create a "compatibility matrix" with Kraftway and other domestic hardware manufacturers that will guarantee maximum performance when using hardware platforms in conjunction with Servicepipe software.

We are confident in the high level of quality, performance and reliability of the mass-produced Kraftway platforms. Their effectiveness for solving information security problems was once again confirmed in the process of laboratory tests of our partners, now - Servicepipe. The creation of a "matrix of compatibility" of hardware solutions of domestic vendors, promoted by Servicepipe, we consider an important step confirming the maturity of the information security market of the Russian Federation, since based on this data, integrators will be able to calculate the optimal configuration of building layered protection for the customer. It will make it possible to understand on which Russian equipment a particular software will demonstrate the proper level of protection, what computing power and resources will be required for this, - said Maxim Shumilov, vice president of technology and marketing at Craftway Corporation.

A few years ago, PAC was built mainly on foreign servers, but now everyone is switching to Russian hardware, and therefore vendors must optimize the algorithms of their solutions and modify the software in such a way as to provide the necessary level of protection on domestic hardware, "said Mikhail Khlebunov, Servicepipe Product Director. - To do this, we have created a research laboratory, the task of which is to test both our own solutions and the products of third-party players for the ability to withstand current cyber threats.

Optimization of DDoS protection system

Servicepipe on March 13, 2025 announced an update to the core of the flagship DosGate product.

DosGate is an adaptive system for protecting IT infrastructure from DDoS attacks and network threats, integrated as software or PAC. Consists of network and session modules. Pre-configured policy suites provide in-depth L3-L7 protection, filtering flexibility, and threat preparedness. The high performance of each hardware platform (up to 400 Gbps and 400 Mpps) guarantees stability in large DDoS attacks.

DosGate has a large-scale refactoring of the formation of network instructions inside BPF programs. As a result, the actual productivity gain was 15%.

In addition, you can now see in the dumps (created in the session module) which rule the package was dropped. This makes it easy to determine which countermeasures filter out a particular traffic.

After updates, it became possible to use negation for the protocol directly in the rule, which allows you to clear all traffic, with the exception of the selected protocol. Previously, local labels were required for this task.

When searching for IP addresses in labels, the geographic region to which the address belongs is now automatically displayed, making it easier to analyze and respond to threats.

DosGate introduced validation of IPv4 options out of the box, which provides automatic blocking of many IP attacks, such as incorrect IP fragmentation.

Updating the kernel not only increases the performance of the solution, but also simplifies the integration of DosGate into modern next-generation security systems, in particular - NGFW (Next Generation Firewall). As a result, DosGate with its packet and session filters can become the first tier to protect WAF, NGFW or other information protection tools from increased illegitimate load . This implementation of DosGate in systems that require comprehensive, multi-level protection is especially important, and guaranteed resistance to complex cyber threats is needed.

Even the most advanced information security tools need protection. We understand this and therefore updated DosGate in such a way that it can be conveniently integrated into network ecosystems where a high level of security is required, "said Mikhail Khlebunov, Servicepipe Product Director. - In addition, the more complex DDoS attacks every day require even more flexibility from vendors in their filtering approaches and the performance of their solutions. And today's DosGate kernel change is the answer to those calls.

2024

DosGate 4.0 with fingerprint analysis JA4

Servicepipe has released an updated version of the system to protect the IT infrastructure from DDoS attacks and network threats - DosGate 4.0. It includes improved flexible rule packs and advanced session protection capabilities, including JA4 fingerprint analysis. The company announced this on December 17, 2024.

DosGate 4.0 has become even more flexible in setting up rule packages, and the average time for setting up individual protection profiles for the needs of each particular organization has been reduced to 15 minutes.

In addition, a large architectural refactor of BPF programs was implemented, which optimized the process of generating network instructions. Thanks to it, the actual performance gain was + 25% for large security profiles.

As a result, the solution can more accurately respond to specific threats, including carpet attacks, and minimize the impact of protective measures on legitimate users.

Also in DosGate 4.0, session protection has been improved. It allows you to effectively resist attacks focused on overloading sessions (and not just packet attacks). The session protection module is able to break suspicious sessions and unload, firewalls providing protection against attacks at the connection level. One of the most significant updates in the session protection module is the introduction of JA4 fingerprint analysis. This is a tool for analyzing TLS traffic, which allows you to detect client features not only by initial connection parameters, but also by behavior encrypted within the channel. This allows for more accurate scanners, to identify boats abnormal traffic, and also provides additional opportunities to combat advanced DDoS attacks. Studies conducted in the Servicepipe laboratory showed: JA4, in combination with JA3, provides more complete control over TLS traffic: JA3 is responsible for analyzing parameters in the initial phase of the connection (ClientHello), and JA4 complements it by recording client behavior after the completion of Handshake.

To protect customers from smart bots, DosGate is integrated with advanced botnet feeds. DosGate 4.0, when working with antibot solutions, allows you not only to block threats from top prints, but also to quickly update signature databases, which makes protection even more accurate and relevant.

Every year DDoS attacks are becoming more powerful and more complex, confronting them requires vendors to constantly improve their products to protect against such threats. This is an eternal struggle between a shield and a sword, and the release of this version of our flagship product is another step to increase the protection of domestic business from cyber threats, "said Mikhail Khlebunov, Product Director of Servicepipe.

Ability to receive detailed retrospective analysis of all locks and authorizations in the last 365 days

Servicepipe has enabled users of DosGate-based solutions to receive detailed retrospective analytics about all locks and authorizations over the past 365 days. The company announced this on March 11, 2024.

DosGate is an Internet traffic management technology to protect IT infrastructure from DDoS attacks and network threats. DosGate-based solutions (DosGate On-prem, Network DDoS Protection, and others) are capable of handling multiple traffic volumes compared to their counterparts thanks to a modular architecture and an advanced countermeasure designer.

Typically, synchronization with other systems, such as SIEM, is required to obtain retrospective data. Now DosGate-based solutions that protect against DDoS attacks have the ability not only to track the retention time of data in dynamic tables (for example, false positive blocking of the IP address of a legitimate user, authorization of a new user, etc.), but also to see the exact time of adding information, analyze past attacks and even more accurately prepare information about incidents at the request of regulators. For example, this option will be extremely useful for financial organizations reporting to the Central Bank on all cyber incidents. The depth of the counter is 1 year, the maximum amount of data stored is 100 million records.

To date, DosGate is the only solution on the world market with such depth of detail. Additional information will allow information security specialists to quickly debug problem cases and adjust system settings even more efficiently than before, "explained Daniil Bobryshev, owner of Servicepipe DosGate.

The update appeared in DosGate On-prem, and changes will also be made to Network DDoS Protection.

2022: Inclusion in the register of Russian software

The DosGate technology of the Russian company Servicepipe is included in the register of Russian software (entry No. 15575) on the basis of an order from the Ministry of Digital Development of the Russian Federation. The developer announced this on December 21, 2022. According to the software classifier, the technology has the class "Target Attack Detection Tools." The inclusion of the technology in the register will contribute to the import substitution process in the Russian information security sector.

DosGate is designed to protect the IT infrastructure from malicious traffic from large botnet networks, prevent the risks of degradation of services and equipment due to DDoS attacks. The technology allows you to separate parasitic and legitimate traffic, quickly activate traffic filtering rules and ensure the availability of IT resources, including communication channels, network and server equipment.

DosGate protects services using protocols: TCP, UDP, SMTP, FTP, SSH, VoIP. and others. The software has many use cases - from DDoS protection and integration with third-party solutions to global Firewall for a large corporate network. The solution can be integrated into the infrastructure of the organization, into the cloud service. Hybrid installations are also available.