Looking for AI/ML tools for DoS/DDoS protections and traffic analysis

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Looking for AI/ML tools for DoS/DDoS protections and traffic analysis

L1 Bithead

Hi all,
Large organization - looking for recommendations of AI/ML tools that we could use to augment our traffic analysis and provide DoS/DDoS protections. I know there are many different ways this could be done but I'm just looking for some 1st-hand-experience on some solutions you guys implemented successfully:
- I am not familiar w/ Palo's AI/ML offerings in this space, if any
- I am interested in if it's possible to develop some sort of in-house neural network that could analyze our traffic logs and then help DoS/DDoS protection by Security Policy creation, or black-holing
- maybe something before the firewalls, at a router level, you could recommend

Thanks. I know this might be a spicy one. 

1 REPLY 1

Cyber Elite
Cyber Elite

Hello @NeonNetSec

 

Palo Alto does not focus on DDoS mitigation: Defending from DoS and volumetric DDoS attacks. The only exception is zone protection, but this is a basic feature. Building any solution on-premise will not protect you against volumetric DDoS attacks as your lines will get clogged before your on-premise devices could mitigate the attack. If you are protecting entire infrastructure, then I would be looking into scrubbing center (Either purchase this service or built your private one). If you are protecting web services, I would be looking into WAF solution. Alternative to these would be asking your ISP to enable DDoS protection on their side on ISP level.

 

Kind Regards

Pavel

Help the community: Like helpful comments and mark solutions.
  • 290 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!