The Need for On Premise & In-Cloud Collaboration

Due to the increased tenacity of cybercriminals and the growth in complexity of DDoS attacks, the foundation for a comprehensive DDoS protection posture begins with an on-premises, always-on, purpose-built DDoS attack mitigation solution. Any selected solution should automatically identify and stop all types of DDoS attacks and other cyber threats before impacting the availability of business-critical services. 

Perimeter Defense Best Practices Using Arbor Edge Defense

Although traditional cloud-based DDoS protection solutions, including those provided by ISPs or CDNs, are designed to stop large volumetric DDoS attacks, they struggle to eliminate other types of DDoS attacks designed to evade their efforts.   

Cloud-based mitigation is an augmentation of on-premises protection. On-premises DDoS attack protection has capabilities intended to identify and mitigate those attacks designed to circumvent cloud-based solutions.   

What’s more, due to the dynamic, multi-vector nature of the modern-day DDoS attack, the Best Practice is to employ both on-premises and a cloud solution with an intelligent and automated integration that offers the most comprehensive protection.

 

NETSCOUT Arbor DDoS Attack Protection Solution
Click to enlarge image

NETSCOUT Arbor DDoS Attack Protection Solution

NETSCOUT Arbor DDoS Attack protection solution is an intelligently automated, combination of in-cloud and on-premises DDoS attack protection that is continuously backed by global threat intelligence and expertise.

Arbor Edge Defense is an Essential On-Premise DDoS Solution, Use Case

Why On-Premise Protection Should Be The Foundation of a Comprehensive DDoS Protection Strategy

Stopping Application Layer Attacks

Because application layer attacks are typically made up of lower volume traffic, they do not automatically trigger volumetric monitors employed by cloud scrubbing solutions and require on premise devices like Arbor Edge Defense (AED) to automatically detect and mitigate.

Stop Application Layer Attacks

Protecting Stateful Devices

Stateful devices within your network like NGFWs, VPN Concentrators and Load Balancers are common targets for state exhaustion attacks. Protecting them in an always on manner can only be accomplished with an On Premise stateless device like AED.

Protecting Stateful Devices Use Case

Blocking C2 Communication from Compromised Internal Devices

Once an attacker breaches your network, compromised internal devices will communicate with their command-and-control infrastructure for further instructions. Deployed outside your firewall, Arbor Edge Defense (AED) blocks Indicators of Compromise (IoC) acting as a last line of defense for your organization.

Block C2 Communications

Stopping Attacks in Encrypted Traffic

When cyber criminals embed attacks within encrypted traffic the only way to detect them is through decryption. Unlike decryption in the cloud, a safer method is to utilize the on-premises, embedded decryption capabilities in Arbor Edge Defense (AED).

Stopping Attacks in Encrypted Traffic Use Case

Additional Resources

Data Sheet
NETSCOUT Arbor Edge Defense (AED)

Arbor Edge Defense (AED) is an inline security appliance deployed at the network perimeter (i.e. between the internet router and firewall).
Data Sheet
Implementation Services for Arbor Edge Defense (AED)

NETSCOUT is committed to providing its customers with quality implementation services delivered by a team of skilled industry professionals.
Data Sheet
Implementation Services for Sightline / Threat Mitigation System (TMS)
Solution Brief
Arbor Managed DDoS Protection Services for Enterprises

Read more in this Solution Brief from NETSCOUT
Solution Brief
Arbor DDoS Attack Protection Solutions

Read more in this Solution Brief from NETSCOUT
Data Sheet
Arbor Cloud DDoS Protection for Enterprises

Arbor Cloud combines on-premise AED DDoS defense with global cloud-based traffic scrubbing services for best-of-breed, hybrid, DDoS attack protection.
Case Study
Xtel Communications

With Arbor Sightline and Arbor Threat Mitigation System in Xtel s environment, the network operation center is able to respond to events in less time with greater precision.
Case Study
U.S. University Mitigates DDoS Attacks with Arbor Solution

University Benefits from Multi-Level DDoS Protection with Cloud and On-Premises Solution
View More Resources

What to Do If You Are Experiencing a DDoS Attack

NETSCOUT’s industry leading DDoS mitigation experts provide 365/24/7 DDoS Attack Support.