While DDoS attack methods are constantly evolving, the business risks involved remain the same.
Network unavailability, website downtime, privacy breaches, brand damage, compromised digital assets: each one can be devastating. And each one can cripple any organization with significant associated recovery costs. Micron21 are pioneers in the industry and protect some of Australia’s largest companies and agencies from crippling DDoS attacks. As such, Micron21 has built a strong reputation as Australia’s most trusted provider of DDoS prevention services.
To stay ahead of these increasingly complex challenges, we continually improve the way we guard against denial-of-service attacks. Micron21 protects organizations. We stop attacks from hindering network performance. We act quickly and diligently to rectify any security issues, regardless of the size or scope of the challenge involved.
The reality is that all online services are vulnerable. But with Micron21 DDoS mitigation services, you can have full confidence in the stability of your online infrastructure. As a leading Anti DDoS provider, our services are purpose-designed to detect, analyse and mitigate DDoS attacks of all types and sizes. We protect global enterprise networks and government services by providing low-latency close-to-source DDoS mitigation.
Tiered service offerings include remote protection for websites and online resources, or network-based protection via our Soak and Scrub services.
Micron21 protects businesses with industry leading Distributed Denial of Service solutions. We take a comprehensive approach to mitigating denial of service attacks. DDoS/mitigation protection employs multiple layers of physical hardware to inspect, scan and filter traffic at the packet layer. There are four protective barricades to our DDoS protection. Brocade Edge Routers are designed to identify and sustain legitimate traffic. NSFOCUS DDoS Mitigation inspects the meta data of packets for known attack patterns against a zero-day database, while instructing A10 load balancers to drop illegitimate traffic. As a final measure of security, Juniper Firewalls provide a final layer of defence at the client end.
The Scrubber service is designed for networks with capacity to absorb unwanted attacks, but that lack the capability to surgically differentiate the unwanted attack traffic from clean traffic. It is a perfect solution for low or high volumes of traffic and ideal for large carrier networks who want to provide DDoS protection as a service to IP transit customers.
There are two modes within the DDoS Scrubber service: automatic and manual.
In automatic mode, threats are detected by our mitigation platform via a deployed onsite virtual appliance. Using flow analytics techniques, the appliance detects cyber threats within a network in the space of a few seconds.
To ensure that network security, compliance and integrity are maintained, the onsite dedicated virtual appliance provides real-time analytics of threats without exporting any data outside of your network. When an attack is confirmed, the priority virtual appliance provides an immediate alert and injects a /32 route via BGP into your network. This will funnel traffic towards the closest Micron21 scrubbing centre.
We surgically separate unwanted and clean traffic in seconds. The clean traffic is then safely returned to the protected network in a process that is completely transparent to the end user. When the threat subsides, the virtual appliance removes the injected route, provides notification that the threat is over and returns routing traffic to its previous state. The virtual appliance is extremely configurable. It offers custom thresholds for different types of attacks and alerts and is capable of monitoring an entire network.
In manual mode, you route traffic towards Micron21 after detecting an attack through your chosen method. You take control of advertising and withdrawing routes manually to enable protection. With Micron21 DDoS Scrubber service, you maintain complete control over the advertisement of your network - at all times. You only send specific /32 routes under traffic towards Micron21 for cleaning.
Additionally, in manual mode:
Our most popular DDoS solution, Soak & Scrub offers resilient and reliable DDoS protection for customers that have neither network capacity nor capability to surgically differentiate unwanted attack traffic from clean traffic.
The service is available as 'always on' or 'on demand', with either automated or manual diversion depending on customer requirements.
Our premium DDoS mitigation service, Soak, Scrub & Polish combines the power and global reach of the Micron21 network with other security measures to protect websites and online resources.
The always on protection platform enables your website and online resources to be served from the edge of Micron21's globally-distributed network (when you are not under attack).
Content is securely cached and passed along to your origin servers. We leverage TCP Anycast, assigning each of your business resources a secure Anycast Virtual IP (VIP) address and providing high-performance global accessibility.
Soak, Scrub & Polish is a robust combination of multi-layer protection including DDoS Mitigation, WAF protection, dedicated SSL offloading, load balancing and caching capabilities that are geographically separated across Europe, Asia, the USA, China and Australia. This powerful, clustered protection platform ensures high availability in the most critical attack scenarios.
Threats are detected by our mitigation platform via a deployed onsite virtual appliance. The appliance identifies cyber-attacks within seconds using a combination of flow analytics (Netflow, SFlow, JFlow) and custom tuned base lines of normal traffic within the network.
Analytics and threat reports are then provided without exporting any data outside of the network, maintaining network security, compliance and integrity. This more specific route advertisement allows Micron21 to funnel traffic directly from the source towards our global scrubbing centres.
After receiving traffic, we surgically separate unwanted from clean traffic. Clean traffic is then safely returned to the protected network via the customer's choice of cross connection and our global MPLS network. This process happens transparently to the end user and is activated within seconds.
Once the threat subsides, the virtual appliance removes the injected route, notifies of the mitigated attack and returns routing traffic to its previous state. The virtual appliance is extremely configurable. It features custom thresholds for different types of attacks and alerts, and is capable of monitoring an entire network.
With complete control, you identify threats using your preferred method and advertise the specific /24 routes under attack via Border Gateway Patrol (BGP) towards Micron21. You withdraw routes manually to enable protection.
On demand manual service offers:
In always on mode you receive all the features and functions of our demand protection platform with the added benefit of traffic always being routed via Micron21 global network: essentially an IP transit service.
This service eliminates the need for routing traffic and waiting for BGP to update globally when an attack is detected. It provides real-time superior protection for every packet entering your network via Micron21.
Our always on service can be used in combination with existing upstream suppliers to provide your network with a blended service. For instance, use Micron21 for clean international capacity or known targeted IP ranges within your network, while still maintaining existing local transit providers for domestic traffic.
Switch the DNS record of the application you want to protect to a Virtual IP (VIP) address provided by Micron21. All inbound application traffic will then be routed to Micron21 global scrubbing centres where it will be analysed and surgically inspected. Any Layer 7 attack traffic will be eliminated, and legitimate traffic will be passed on to your infrastructure, ensuring non-stop availability for your critical applications.