The document discusses a webinar on monitoring and mitigating DDoS attacks using Cloudflare and Kentik's technologies, highlighting their global network capabilities and the critical nature of DDoS protection. It outlines the costs associated with DDoS attacks, current trends, and the integration of Cloudflare's Magic Transit service for automated defense against such threats. Furthermore, the document promotes a special offer for businesses looking to transition from their current service providers to Cloudflare's solutions.

1. Live webinar
Monitoring and
mitigating DDoS
attacks with
precision and speed
Wed, June 3, 2020
9 AM PST
Jim Frey
Alliances
Kentik
Vivek Ganti
Product Marketing
Cloudflare

2. We are helping
build a better
Internet.

3. Cloudflare’s Global Anycast Network 27M
Internet properties
37 Tbps
Network capacity
200
Cities and 95+ countries
50B
Cyber threats blocked each day
in Q4’19
99%
Of the Internet-connected
population in the developed
world is located within 100
milliseconds of our network
Note: Data as of June 28, 2019.
3

4. Every Product Runs On Every Server In Every
Datacenter Around The World
4

5. Provider of the leading network
intelligence platform trusted by digital
enterprises and service providers
FOUNDED
2014
CUSTOMERS
250+
HQ
San Francisco
TEAM MEMBERS
90+

6. Kentik Network Intelligence:
Conquering Complexity to Ensure Reliable Networks
● Proactive Anomaly
Detection
● DDoS Defense
● Automated triggering
for corrective actions
● Rapid Troubleshooting
workflows
User Experience
● Capacity Planning
● Cost Analysis
● Peering and
Interconnection
Network Cost
● Visualizing Hybrid,
Multi-cloud activity and
dependencies
● Usage Policy
compliance
● Traffic Engineering
Network Optimization

7. What Is A DDoS Attack?

8. What Is A DDoS Attack?
● A malicious attempt to disrupt normal traffic of a targeted server, service or
network by overwhelming the target or its surrounding infrastructure with a flood
of Internet traffic
● Achieve effectiveness by utilizing multiple compromised computer systems as
sources of attack traffic
● Exploited machines can include computers and other networked resources such
as IoT devices
8

9. Cloudflare blocks 45,000,000,000 attacks per day*

10. Cost of DDoS Attacks
● Gartner: The average cost of
downtime is estimated at
$5,600 per minute.
● Attacks are commonly used as
a way to distract security teams
during an attempted breach.
● Even after 3 years, breached
companies underperformed the
market by -13.27%
10
Source: https://www.comparitech.com/blog/information-security/data-breach-share-price-analysis/

11. Global Attack Trends
(Q1 2020)

12. The rise of smaller, shorter attacks in Q1
12

15. What this means for you
15
● Attacks are cheap
● Every attack hurts!
● A crisis is, unfortunately, sometimes a
malevolent opportunity

16. Cloudflare + Kentik

17. Cloudflare Magic Transit: DDoS mitigation for entire networks
Cloudflare Data Center
200 Cities in 95 countries
35 Tbps DDoS mitigation capacity
DDoS protection
Near-instant TTM
Network firewall
Granular Allow/Deny rules
for IP ranges
Customer Data Center
LAYER 3 - IP
(MAGIC TRANSIT)
17

18. Legit Client
Attacker
BGP announcements
from every single
Cloudflare data center
L3/ 4 attack
traffic
Customer data center
Egress (over the internet)
All L3/ L4-7 services delivered from every Cloudflare
data center (no need for traffic diversion)
Smart routing over the
Cloudflare network
Ingress to customer data center
(over Anycast GRE/ PNI)
Legit traffic
Magic Transit: attacks are detected and mitigated
at a Cloudflare data center closest to the source of
origin

19. How Kentik Detects and Mitigates DDoS Attacks
●Multi-dimensional
monitoring
●Intelligent and
adaptive
baselining
●Alert notification
integrations with
existing tools
●For “on-demand”
mitigation:
Automation
activation follow
attack detection
Flow Data
BGP Data
Network Metadata
KENTIK PLATFORM
Alert Notifications
Anomaly Alerting
Internet Legitimate
Traffic
Attack
Traffic Mitigation Integration
Cloud/On-premises
Native RTBH/
Flowspec Mitigation
Your Network
Edge Routers

20. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Peace Time

21. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
DDoS Attack Commences
Attackers
Attack Traffic
!
API Call

22. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Mitigation activated
Attackers
Attack Traffic
!
Advertise New Route

23. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Mitigation begins
Attackers
Attack Traffic

24. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Attack Ends
Retract Route

25. Cloudflare + Kentik: How it works
Kentik Platform
Users &
Subscribers Internet
Service Provider
Cloudflare Magic
Transit
Your
Internet
Edge
Router
Legitimate Traffic
Return to Peace Time

26. For a limited time:
Replace your legacy provider with Cloudflare Magic Transit and pay
nothing until your existing contract expires*
● Get Magic Transit service at no charge until the expiration of your
current contract with your current provider for up to 12 months
● We will aim to beat the price you are paying your legacy provider,
for the paid period
● For more information, go to www.cloudflare.com/lp/better
*Terms and conditions apply
Network DDoS Protection You’ll Love. We’ll Prove It.

27. Thank you
email:
vivek@cloudflare.com
jfrey@kentik.com