5:28:24 PM - Wed, Mar 8th 2023 |
|
UDP detection and mitigation is not all that different from TCP mitigation because the base 5 tuple used to identify and mitigate DDoS UDP and TCP assaults is largely the same. Source and destination IP addresses, source and destination ports, and the protocol UDP or TCP are the five tuples that are employed.
Different signatures will be used for detection; typically, DNS is sent over UDP port 53, and NTP is sent over UDP port 123. SSH and Telnet use TCP ports 22 and 23, respectively. Once the attack type has been identified, you can mitigate in the same way using scrubbing and routing techniques. AntiDos is a team that provides cdn waf and digital marketing services that work on the latest technology platforms.
|