DDoS attacks are evolving. Detecting and mitigating attacks quickly and accurately is a key strategy to ensure business continuity.
Join this webinar to learn about:
- What is a DDoS attack and what it can cost you
- Global DDoS attack trends and what it means to you
- How Cloudflare Magic Transit and Kentik together monitor and mitigate DDoS attacks of all sizes and kinds
Azure Monitor & Application Insight to monitor Infrastructure & Application
Kentik and Cloudflare Partner to Mitigate Advanced DDoS Attacks
1. Live webinar
Monitoring and
mitigating DDoS
attacks with
precision and speed
Wed, June 3, 2020
9 AM PST
Jim Frey
Alliances
Kentik
Vivek Ganti
Product Marketing
Cloudflare
3. Cloudflare’s Global Anycast Network 27M
Internet properties
37 Tbps
Network capacity
200
Cities and 95+ countries
50B
Cyber threats blocked each day
in Q4’19
99%
Of the Internet-connected
population in the developed
world is located within 100
milliseconds of our network
Note: Data as of June 28, 2019.
3
4. Every Product Runs On Every Server In Every
Datacenter Around The World
4
5. Provider of the leading network
intelligence platform trusted by digital
enterprises and service providers
FOUNDED
2014
CUSTOMERS
250+
HQ
San Francisco
TEAM MEMBERS
90+
8. What Is A DDoS Attack?
● A malicious attempt to disrupt normal traffic of a targeted server, service or
network by overwhelming the target or its surrounding infrastructure with a flood
of Internet traffic
● Achieve effectiveness by utilizing multiple compromised computer systems as
sources of attack traffic
● Exploited machines can include computers and other networked resources such
as IoT devices
8
10. Cost of DDoS Attacks
● Gartner: The average cost of
downtime is estimated at
$5,600 per minute.
● Attacks are commonly used as
a way to distract security teams
during an attempted breach.
● Even after 3 years, breached
companies underperformed the
market by -13.27%
10
Source: https://www.comparitech.com/blog/information-security/data-breach-share-price-analysis/
17. Cloudflare Magic Transit: DDoS mitigation for entire networks
Cloudflare Data Center
200 Cities in 95 countries
35 Tbps DDoS mitigation capacity
DDoS protection
Near-instant TTM
Network firewall
Granular Allow/Deny rules
for IP ranges
Customer Data Center
LAYER 3 - IP
(MAGIC TRANSIT)
17
18. Legit Client
Attacker
BGP announcements
from every single
Cloudflare data center
L3/ 4 attack
traffic
Customer data center
Egress (over the internet)
All L3/ L4-7 services delivered from every Cloudflare
data center (no need for traffic diversion)
Smart routing over the
Cloudflare network
Ingress to customer data center
(over Anycast GRE/ PNI)
Legit traffic
Magic Transit: attacks are detected and mitigated
at a Cloudflare data center closest to the source of
origin
19. How Kentik Detects and Mitigates DDoS Attacks
●Multi-dimensional
monitoring
●Intelligent and
adaptive
baselining
●Alert notification
integrations with
existing tools
●For “on-demand”
mitigation:
Automation
activation follow
attack detection
Flow Data
BGP Data
Network Metadata
KENTIK PLATFORM
Alert Notifications
Anomaly Alerting
Internet Legitimate
Traffic
Attack
Traffic Mitigation Integration
Cloud/On-premises
Native RTBH/
Flowspec Mitigation
Your Network
Edge Routers
20. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Peace Time
21. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
DDoS Attack Commences
Attackers
Attack Traffic
!
API Call
22. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Mitigation activated
Attackers
Attack Traffic
!
Advertise New Route
23. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Mitigation begins
Attackers
Attack Traffic
24. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Attack Ends
Retract Route
25. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Return to Peace Time
26. For a limited time:
Replace your legacy provider with Cloudflare Magic Transit and pay
nothing until your existing contract expires*
● Get Magic Transit service at no charge until the expiration of your
current contract with your current provider for up to 12 months
● We will aim to beat the price you are paying your legacy provider,
for the paid period
● For more information, go to www.cloudflare.com/lp/better
*Terms and conditions apply
Network DDoS Protection You’ll Love. We’ll Prove It.