Manuals+

FortiDDoS and Baffin Bay Networks Riverview Cloud DDoS Protection Service

Executive Summary

Distributed denial-of-service (DDoS) attacks are a prevalent threat to networks and applications globally. Fortinet FortiDDoS appliances provide industry-leading DDoS detection and mitigation for Layer 3, 4, and 7 attacks, capable of handling attacks up to the maximum available bandwidth. However, even robust mitigation can be overwhelmed by pervasive attacks that saturate incoming links, causing packet loss and rendering legitimate traffic unusable. By combining FortiDDoS mitigation appliances with the cloud-based Baffin Bay Networks Riverview DDoS Protection Service, customers achieve a unified approach to DDoS attack remediation supported by actionable, shared threat intelligence.

A Joint Approach for High-volume DDoS Mitigation

FortiDDoS and Baffin Bay Networks collaborate to detect and mitigate high-volume DDoS attacks. The FortiDDoS on-premises appliance transmits real-time threat information to the Baffin Bay Networks cloud solution. When an attack approaches a customer's bandwidth capacity, the FortiDDoS appliance alerts Baffin Bay Networks via its open API, providing detailed attack information (types, sizes, attacked subnets/IPs). This data is used to automatically configure attack filters at Riverview Threat Protection Centers (TPCs) and initiate Border Gateway Protocol (BGP) diversion of customer-bound traffic to the TPCs. After scrubbing, clean traffic is returned to the customer site, typically via a Generic Routing Encapsulation (GRE) tunnel. FortiDDoS continuously monitors traffic within the GRE tunnel for new threat vectors.

Baffin Bay Networks offers customers a cloud-based service supported by security experts who monitor attacks, block malicious traffic at its source, and return clean traffic to maintain business operations. Baffin Bay Networks utilizes its globally distributed TPCs to defend against multivector Layer 3, Layer 4 volumetric, and Layer 7 attacks. FortiDDoS monitors the returned clean traffic for all parameters to maintain graphing, logging, and reporting.

Diagram Description

The diagram illustrates the FortiDDoS and Baffin Bay Networks Riverview DDoS Protection Service working together. It shows Network Users connected to the Internet, which is also connected to Network Services and Applications. A DDoS Attack (Bulk Volumetric and/or Application Layer) targets the Network Services and Applications. FortiDDoS is positioned between the Network Users and the Internet. A signaling path connects FortiDDoS to Baffin Bay Networks Riverview DDoS Protection Service. The process is described as: An alert signal sent by FortiDDoS is received by Riverview, which triggers BGP traffic redirection to Baffin Bay Networks TPCs with scrubbing. Clean return traffic is sent over GRE. FortiDDoS detects a link-saturating DDoS attack, sends an alert with attack information to the cloud DDoS service provider, and traffic is redirected via BGP to cloud DDoS scrubbing sites.

Solution Benefits

  • Always-on DDoS defense delivered via the FortiDDoS on-premises appliance(s).
  • Rapid and wide-ranging DDoS mitigation from single-packet scans to full-link line-rate attacks.
  • Superior cloud mitigation for saturating volumetric attacks that exceed network capacity.
  • Utilization of a joint on-premises and cloud-based solution for massive scalability.
  • Minimized operational involvement with attack redirection to the cloud, based on customer-defined thresholds and automated BGP diversion.
  • DDoS event reporting and analytics on-premises, coupled with visibility of attack countermeasures applied in the cloud.
  • Next-generation technology built to grow with customer business needs.
  • FortiDDoS open API integration with Baffin Bay Networks Riverview DDoS Protection Service provides scalable mitigation protection.

FortiDDoS Mitigation Appliances

FortiDDoS appliances detect and prevent DDoS attacks while providing real-time network visibility. They protect internet-facing infrastructures from threats and service disruptions by identifying and mitigating network and application-layer DDoS attacks. These appliances defend critical on-premises and cloud infrastructures by using sophisticated filtering technologies to ensure secure traffic flow. The scalable, high-performance appliances offer proven DDoS defenses, are interoperable with existing security technologies and network infrastructure, and integrate seamlessly with other Fortinet Security Fabric products.

Cloud Signaling

FortiDDoS and Baffin Bay Networks utilize the FortiDDoS cloud signaling open RESTful API for interoperability with Fortinet Security Fabric partners. FortiDDoS on-premises devices automatically generate alerts based on predefined attack thresholds and send them to Baffin Bay Networks to initiate mitigation services. This provides customers with the combined benefits of both on-premises and cloud-based DDoS protection. Alerts generated by FortiDDoS appliances and delivered to Baffin Bay Networks can be viewed by customers via the Baffin Bay Networks customer portal.

About Baffin Bay Networks

Baffin Bay Networks was founded in 2017 by cybersecurity experts dedicated to protecting organizations against advanced cyber threats. Their experts possess backgrounds from major U.S. security enterprises and leading Nordic banks. The company aims to build and deliver a Threat Protection Platform that empowers customers to mitigate cyber threats. Headquartered in Stockholm, Sweden, Baffin Bay Networks operates a global network of Threat Protection Centers to secure customers worldwide.

About Fortinet

Fortinet (NASDAQ: FTNT) secures the most valuable assets for enterprise, service provider, and government organizations globally. Its fast, secure, and global cybersecurity solutions offer broad, high-performance protection against dynamic security threats while simplifying IT infrastructure. These solutions are enhanced by industry-leading threat research, intelligence, and analytics. Unlike specialized network security providers, Fortinet addresses critical security challenges across networked, application, and mobile environments, whether virtualized, cloud, or physical. Over 210,000 customers worldwide, including many large and complex organizations, trust Fortinet for brand protection. Learn more at www.fortinet.com.

PDF preview unavailable. Download the PDF instead.

sb-fortiddos-and-baffin-bay-networks Adobe PDF Library 15.0 Adobe InDesign CC 14.0 (Windows)

Related Documents

Preview Fortinet and Ixia Security Solution: Better Data for Faster Responses
This document outlines the integrated security solution from Fortinet and Ixia, designed to improve data visibility, accelerate threat detection, and enhance response times within hybrid networks and data centers. It details how Ixia's visibility solutions complement the Fortinet Security Fabric for a more robust and automated security infrastructure.
Preview Fortinet and Cyglass Integrated Security Solution for AI-Driven Network Behavior Anomaly Detection
This solution brief details the integration of Fortinet's Security Fabric with CyGlass's AI-driven network behavior anomaly detection to enhance cybersecurity. It addresses challenges in detecting advanced threats and offers benefits like improved visibility, threat detection, and asset identification.
Preview Fortinet MSSP Ordering Guide: Product Offerings and Solutions
This guide details Fortinet's comprehensive Managed Security Service Provider (MSSP) solutions, covering product families like FortiGate, FortiManager, FortiAnalyzer, FortiSIEM, FortiSOAR, FortiEDR, FortiClient, FortiAP, FortiSwitch, FortiExtender, FortiWeb, and FortiMail. It provides an overview of features, deployment options, and ordering information for each product, enabling MSSPs to deliver robust cybersecurity services.
Preview FortiOS 7.0.6 Release Notes - Fortinet
Comprehensive release notes for Fortinet FortiOS 7.0.6, detailing new features, resolved issues, known issues, and upgrade procedures for FortiGate network security devices.
Preview FortiGate 200G Series Datasheet: AI-Powered Next-Generation Firewall
Comprehensive datasheet for Fortinet's FortiGate 200G Series (FG-200G and FG-201G) Next-Generation Firewall (NGFW), featuring AI/ML security, deep visibility, and advanced threat protection.
Preview Fortinet Product Catalog: Comprehensive Network Security Solutions
Explore the full range of Fortinet's advanced network security products, including FortiGate firewalls, FortiWiFi, FortiAnalyzer, FortiMail, FortiAP, FortiSwitch, FortiWeb, FortiManager, FortiSIEM, FortiNAC, FortiSandbox, FortiClient, and FortiToken. This catalog details the features, specifications, and performance of each solution designed to protect your digital infrastructure.
Preview Fortinet and Auvik Network Monitoring and Management Solution
A comprehensive threat protection solution with deep network visibility and troubleshooting for network professionals, integrating Fortinet's FortiGate, FortiSwitch, and FortiAP with Auvik's automated network monitoring and management software.
Preview Fortinet Security Fabric 2020: Active Defense Strategies
Explore Fortinet's Active Defense and Security Fabric 2020, detailing digital transformation, security architecture, threat landscape evolution, and comprehensive network security solutions.