| With the rapid development of Internet, network security is becoming more and more critical, DDoS(Distributed Denial of Services ) attacks is one of the primary threats in today's Internet, further more, there is no completely satisfying protective and detective means of attacks yet, so it is an very important target in the network security field to design more effective security solution and attack detection module.Aimed at the network security status of telecommunication services, based on elucidation of DDoS attacks'theory, classification, common technology, common attack tools, defend mode, trend and existing routine technical means of protection and detection, combined with corresponding security management policy, an integrated security solution ,to which related protection, security enhancement and so on, for defeating the attack of DDoS is designed and an attack detection module based on NetFlow is designed ,with its characteristics of veracity, real time and particular, and the analytic content includes attack source IP address, destination IP address, traffic, protocol, packet size, destination port and so on. At last a more detailed security strategy is put forward.Practical running shows that the systems protected in such a way can deliver regular service while under large-scale of DDoS attacks, and the attack detection module with its characteristics of veracity, real time and particular has been proved on practical network. |
PDF Full Text Request