RFC 9234 introduces a novel mechanism that leverages the BGP Role to prevent and detect...

The feature factors in user-defined threshold rules and utilizes versatile telemetry and control (NetFlow/sFlow and BGP) capabilities of routers to identify and block the attacks. FlowSpec-based mitigation technique allows filtering out smaller threats, while the Remote Triggered Blackholing can be used to block large volume attacks. Both FlowSpec and Blackholing mechanisms can be enabled simultaneously for a single rule, with thresholds for FlowSpec being indicated lower than the Blackholing values.
IRP’s Threat Mitigation leverages the standard features of modern routing hardware to scale easily to large high-traffic networks. It requires minimum human interaction and comes with a user-friendly interface as well as versatile alerting/notification options.
Specific DDoS mitigation actions can be enabled manually at any given time at the user’s discretion.
Some other improvements and features in IRP v 4.1 include new notification objects for the Circuit Issue Detection events, a new parameter for SNMP hosts to allow specifying custom port numbers, support for the SNMPv3 context attribute, an option to allow the configuration of IX peering partners as full view transits and others.
For more information on the complete set of features and improvements available with IRP 4.1, please get in touch with Noction account representatives at sales@noction.com or review the documentation.
Interested in the new Noction Intelligent Routing Platform version? Get in touch with us to arrange a personalized demonstration.
Noction Flow Analyzer v23.07 has just been released. The new version brings a number of new features and improvements...
Noction Intelligent Routing Platform (IRP) v4.2 has just been released. This update introduces an array of exciting...
Noction Flow Analyzer v23.05 is here. This version comes with a number of new features and enhancements: New Filtering...