Perimeter Defense Best Practices Using Arbor Edge Defense

The Need for On-Premises & In-Cloud Collaboration

NETSCOUT Adaptive DDoS Protection solutions leverage robust, always-on, on-premises services specifically designed to automatically identify and neutralize all types of DDoS attacks against enterprises and service providers. Adapting to the escalating intensity and complexity of cyber threats ensures unimpeded access to your business-critical services. This strategy incorporates intelligent systems that swiftly detect and counteract threats, preventing potential disruptions before they affect the availability and performance of your vital network infrastructure. This proactive approach provides a robust shield, ensuring your enterprise is always protected against evolving cyber threats.

Although traditional cloud-based DDoS protection solutions, including those provided by ISPs or CDNs, are designed to stop large volumetric DDoS attacks, they struggle to eliminate other types of DDoS attacks designed to evade their efforts. Cloud-based DDoS attack defense solutions augment on-premises protection. On-premises DDoS attack mitigation has capabilities intended to identify and protect against attacks designed to circumvent cloud-based solutions.

Furthermore, due to the dynamic, multi-vector nature of modern-day DDoS attacks, the best practice is to employ both an on-premises and a cloud solution with an intelligent and automated integration that offers dynamic, adaptable DDoS protection powered by on-premises and in-cloud DDoS protection services.

DDoS Attack Defense Solutions
Click to enlarge image

An On-Premises Adaptive DDoS Protection Service Should be a Priority

Industry analysts are coming to grips with the fact that due to today's growing frequency and dynamic nature of DDoS attacks, the need for a multilayer, adaptable DDoS attack protection strategy is now a requirement. Furthermore, due to the creation of new attack vectors like dynamic DDoS attacks, which change vectors based on the defense that is presented, the need for on-premises DDoS attack mitigation and real-time inline attack analysis is a priority.

On-Premises DDoS Protection White Paper

Excellent tool. Before installing NETSCOUT Arbor we were unaware of the amount of unwanted traffic hitting our network. Being able to block these has definitely given our firewall some breathing space.

Gary Booth, IT Manager, South Staffordshire College

Why On-Premises Protection Should Be the Foundation of an Adaptive DDoS Mitigation Strategy

On-Premises DDoS Attack Protection

NETSCOUT Arbor DDoS attack protection solution is an intelligently automated combination of in-cloud and on-premises DDoS attack protection that is continuously backed by global threat intelligence and expertise.

Stopping Application Layer Attacks

Because application layer attacks are typically made up of lower volume traffic, they do not automatically trigger volumetric monitors employed by cloud scrubbing solutions and require on-premise devices like Arbor Edge Defense (AED) to automatically detect and mitigate.

DDoS Protection for Stateful Devices

Stateful devices within your network like NGFWs, VPN Concentrators, and Load Balancers are common targets for state exhaustion attacks. Protecting them in an always-on manner can only be accomplished with an On-Premise stateless device like Arbor Edge Defense.

Blocking Internal & External C2 Communications

Once an attacker breaches your network, compromised internal devices will communicate with their command-and-control infrastructure for further instructions. Deployed outside your firewall, Arbor Edge Defense (AED) blocks Indicators of Compromise (IoC), acting as a last line of defense for your organization.

Stopping Attacks in Encrypted Traffic

When cybercriminals embed attacks within encrypted traffic, the only way to detect them is through decryption. Unlike decryption in the cloud, a safer method is to utilize the on-premises, embedded decryption capabilities in Arbor Edge Defense (AED).

DNS DDoS Protection

DNS water torture attacks rose from an average of 144 daily attacks at the start of 2023 to 611 at the end of June 2023, marking a nearly 353 percent increase in only six months. AED detects DNS attacks based on an increase in NXDOMAIN or SERVFAIL entries in DNS query responses.

A Blend of On-Premises and Cloud-Based DDoS Defense Mechanisms is a Must

Marrying the best of both worlds with NETSCOUT's Arbor DDoS Protection solutions is key to providing robust defenses against all types of DDoS attacks. Blending the power of an on-premises DDoS protection solution, like AED, and Arbor Cloud's powerful DDoS scrubbing capabilities upstream make the tandem a must-have for enterprises. Service providers and the largest enterprises can also reap the benefits of the DDoS attack mitigation of Arbor Sightline and Arbor Threat Mitigation System (TMS) to protect their complex, large-scale networks.

2022 CyberSecured Award Winner: Network Security

AED has definitely improved uptime for applications that are bringing business value to the company.

-Manager of Cyber Defense Center Engineering for a logistics firm

Award Winning DDoS Protection

What to Do If You Are Experiencing a DDoS Attack

NETSCOUT’s industry leading DDoS mitigation experts provide 365/24/7 DDoS Attack Support.