Denial of Service

What Type of Threat Do DDoS Attacks Pose?

Distributed Denial of Service (DDoS) attacks work by sending a flood of IP packets from hundreds of sources (DDoS Clients). These clients, often times, have themselves been compromised by an attacker, and the clients are controlled remotely to ensure the attacker cannot be traced. The packets that hit the victims are generally forged, with invalid source addresses, making tracing to the client extremely difficult.

What Specific Measures Is Level 3 Taking In Response To DDoS Attacks?

The Level 3 Security Operations Center includes a 24 x 7 Incident Response Team that can quickly provide the first level of DDoS mitigation. We also created a scalable and cloud-based DDoS solution with stringent SLAs. Customers can leverage this solution as-needed to combat against any kind of DDoS attack. For additional information on this service, view our Level 3 DDoS Mitigation Services webpage.

DDoS attacks are an industry problem, for which there is no easy resolution. However, Level 3 is committed to providing a robust, scalable and safe network with extensive security measures that keeps perpetrators at bay. Some of the salient features of our network include:

  • Resistant Router Network
    Level 3's router network has already been configured to prevent IP-directed broadcast, Proxy ARPs, and IP redirects, thereby making it more resistant to DDoS attacks. In addition, Level 3 currently monitors its production networks for all security anomalies, including DDoS attacks, and takes immediate action when such an attack is identified.
  • Deployment of DDoS Tracking System
    Level 3 has also deployed a DDoS Tracking system that can trace attacks involving forged source addresses to the edge of the Level 3 network. Due to the nature of DDoS attacks, the tracing activity involves a significant amount of coordination with other ISPs. Since the tracing activity can impose an extreme load on the Level 3 infrastructure, its deployment must be determined on a case-by-case basis.

What Can I Do To Help Prevent DDoS Attacks?

Level 3 encourages its customers to filter traffic to prevent DDoS attacks, participate in measures to increase Internet security, and to educate others by joining the ISPSEC and/or supporting the Alliance for Internet Security. Specifically, we ask our customers to take measures to:

  • Deploy an outbound filter that only allows their authorized address space.
  • Ensure that all their systems are properly protected to prevent compromise, since the distributed DDoS attacks rely on the attacker gaining access to a large number of systems.

Preventing potentially debilitating attacks is far easier, and less costly, than having to respond after the fact. Therefore, we hope you'll join us in our pledge to prevent DDoS attacks by working together to become part of the solution.