box against dos/ddos

Piotr piotr.1234 at
Thu Jan 31 14:37:41 UTC 2013


I looking some box (vendor, model), which i can put out of the 
main/product network,  which can analyze packets  netflow,sflow,syslog 
from bgp router(s) and after discover some anomaly it can do some 
action, for example:

- Box have bgp session with bgp router and advertise attacked ip prefix 
with some community. Bgp router set next-hop for this prefix to /dev/null

Normal traffic via bgp router is about 1G/s in and 10G/s out

What is worth of looking and what you suggest ?

thanks for help,

More information about the NANOG mailing list