Adaptive Protection from Today’s Most Advanced DDoS Threats Solution Overview

Distributed denial-of-service (DDoS) attacks are increasing in frequency and sophistication. The availability of powerful IoT botnets-for-hire on the dark web make launching large scale attacks increasingly easy and inexpensive.

Professional hackers continuously seek new ways to disrupt the flow of network traffic and undermine the user experience, resulting in lost revenue, brand damage, and increased customer churn rates.

DefensePro® X, Cisco’s industry-leading, real-time perimeter DDoS attack mitigation solution, protects organizations from emerging multivector DDoS attack campaigns, IoT botnets, application vulnerability exploitation, malware, and other types of cyberattacks.  DefensePro X utilizes proven behavioral-based technologies to provide highly effective and adaptive protection against today’s most advanced threats.

Key Features:

Automated Zero-Day Attack Defense

Behavioral-based detection and mitigation defend against unknown zero-day attacks without impacting legitimate traffic and the user experience

Advanced Attack Protection

Accurately detects and mitigates today’s most advanced attacks, including Burst attacks, Domain Name System (DNS) amplification attacks, IoT botnet floods, Layer 3–7, encrypted Web DDoS attacks, and other advanced DDoS threats

Keyless TLS Flood Mitigation

Provides high-capacity keyless protection from TLS-based DDoS floods without compromising user privacy or adding latency

Patent-Protected Real-Time Attack Signature

Automatic signature creation and advanced challenge escalations provide highly effective protection and the ability to automatically mitigate unknown zero-day attacks while minimizing the impact on legitimate traffic

State-of-the-Art Protection

●     Industry-leading protection from DDoS threats leveraging machine learning algorithms for automated protection without the need for human intervention

●     Behavioral-based algorithms protect the user experience for legitimate users when under attack and minimize false positives

●     Protection from the most advanced threats: Burst attacks, encrypted attacks, carpet bombing attacks, IoT botnets, and many more

●     Protects against encrypted floods without decrypting all TLS traffic by intelligently identifying and inspecting anomalies

Optimal Security Experience

●     Rich user experience and visibility with advanced security operation dashboards that provide unified visibility into the full attack lifecycle and mitigation analysis for both inline and out-of-path deployments

●     Networks analytics provide unparalleled visibility into traffic statistics in both peacetime and when
under attack

●     Simplified management and configuration with unified visibility and control for both out-of-path and inline DDoS protection solutions, optimized troubleshooting, and enriched search and filter capabilities

●     Multiple deployment options are available with mitigation capacity from 10 to 800 Gbps from a single appliance. The solution is also available as a virtual appliance for deployment in public or private clouds.  Cisco® Secure Cloud DDoS Protection can also be combined with on-prem Secure DDoS Protection to mitigate any size attack

DefensePro X Subscriptions

The DefensePro X lineup is combined with additional subscriptions for network and application protection.  For Network Protection, there are two available options to choose from based on the capabilities that are needed—Silver or Gold.  The Application Protection subscription is added to provide advanced behavioral protection against more complex application threats.

Need more information?

Contact your Cisco sales representative today or email us at ask-ddos-waf@external.cisco.com.