Friday, January 26, 2018

Trying to set up DDoS scrub server

So I colo in Chicago and run a small sized hosting company. I want to start getting into DDoS attack mitigation and I have some of the infrastructure to get started.

I have a Juniper EX4300. It's older and has limited functionality. The firewall sucks. This router is on a 10G backbone.

I have a dedicated server in this same LAN on a 10G link with some insane specs that I want to use to scrub incoming DDoS traffic with firewall rules then pass it back to the core router.

How would I do this. I already got traffic to the dedicated server via iBGP and via static routes but how do I go about routing back the clean traffic after I've worked it on the dedicated server?



No comments:

Post a Comment