AntiDDoS1000 is Huawei's enterprise-class professional DDoS defense system for government, financial, enterprise, small data center and ICP service providers.
The AntiDDoS1000 protects the business continuity of enterprise infrastructure and online systems by delivering accurate, comprehensive defense and sec- ondary attack response for over 100 attacks.
Key Features
Accurate, comprehensive, and reliable defense against DDoS attacks
Efficient and fast: 10 Gigabit interface protection, second-class attack response speed;
Accurate and comprehensive: "V-ISA" reputation security system, can defend more than 100 kinds of attacks;
Easy to use: management is simple, rich statements;
Technical specifications
parameter | AntiDDoS1520 | AntiDDoS1550 | AntiDDoS1500-D |
interface | Fixed interface: 4 × GE (RJ45) + 4 × GE (Combo); Expansion slot: 2 × FIC |
Expansion interface card |
2 × 10GE (SFP +); 8 × 1GE (SFP +); 8 × 1GE (RJ45) Bypass card: 4 × 1GE (RJ45); 2-link LC / UPC multimode optical interface; 2-link LC / UPC single-mode optical interface
|
Threat Defense Type |
Exception filtering | Blacklist / Filter based on HTTP protocol field / TCP / UDP / other protocol load feature filtering |
Protocol Vulnerability Threat Protection Scanning Spy Threat Protection
|
IP Spoofing LAND Attack Fraggle Attack Smurf Attack Winnuke Attack Ping of Death Attack Tear Drop Attack IP Option Control Attack IP Fragmentation Control Packet Attack TCP Mark Legality Check Attack Large ICMP Control Packet Attack ; ICMP redirection control packet attack; ICMP unreachable control packet attack Port scanning attack; address scanning attack; TRACERT control packet attack; IP source station routing option attack; IP timestamp option attack; IP routing record option attack
|
ransport Layer Threat Protection | SYN flood attack, ACK flood attack, SYN-ACK flood attack, FIN / RST flood attack, TCP fragment flood attack, UDP flood attack, UDP fragment flood attack, ICMP flood, etc. |
Application Threat Protection | DNS flood attack; DNS cache poisoning attack; DNS protocol flaw attack; HTTP get / post flood attack; CC attack; HTTP slow header / post attack; HTTPS flood attack ; TCP DoS / DDoS attack; TCP connection exhaustion attack; Sockstress attack; TCP retransmission attack; TCP empty connection attack; SIP flood |
Threatening threat | 200+ popular zombie worm protection, such as: LOIC, HOIC, Slowloris, Pyloris, HttpDosTool, Slowhttptest, Thc-ssl-dos, puppet zombie, Falcon DDoS, Fengyun Platinum, |
