• Home

  • Documents

  • IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …)...
38
SOLVING DDOS ATTACKS FACILITATING BRIDGING SOLUTIONS AND STAKEHOLDERS DDOS CLEARING HOUSE IN THE NETHERLANDS 2019-05-21 , EUROPE, AND BEYOND

IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

  • Upload
    others

  • View
    9

  • Download
    0

Embed Size (px)

Citation preview

Page 1: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

SOLVING DDOS ATTACKS FACILITATING BRIDGING SOLUTIONS AND STAKEHOLDERS

DDOS CLEARING HOUSEIN THE NETHERLANDS

2019-05-21

, EUROPE, AND BEYOND

Page 2: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

SOLVING DDOS ATTACKSKoen van Hove

Researcher at the University of Twente

Page 3: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

THE PROBLEM AND OUR IDEA

Page 4: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

https://www.bus

iness.c

om/categ

ories/be

st-ddo

s-protec

tion-services/

Page 5: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

https://scho

lar.g

oogle.nl/sch

olar?h

l=en

&as_sdt=0

%2C

5&q=

ddos

+atta

ck&btnG

=

Page 6: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

?

WHY DOES DDOS STILL

EXIST?

??? ? ?? ?

Page 7: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

SOLVING DDOS

ATTACKS

Page 8: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

SOLVING DDOS

ATTACKS

ACADEMIADDOS

PROTECTIONPROVIDERS

Page 9: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 10: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOS CLEARING HOUSE

Page 11: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOS CLEARING HOUSE

Page 12: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

NETWORK MEASUREMENT (PCAP, NET FLOW, IPFIX, SFLOW, LOGS, …)DDOS_DISSECTORINPUT: NETWORK MEASUREMENTOUTPUT: DDOS FINGERPRINT (+*NOTES)

FILTERED & ANONYMIZED NETWORK MEASUREMENTSDDOS_FINGERPRINT_CONVERTERSINPUT: DDOS FINGERPRINTOUTPUT: RULE/SIGNATURE FOR SPECIFIC HW/SW SOLUTION(S)(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …)DDOSDBSTORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO

Page 13: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 14: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …
Page 15: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …
Page 16: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 17: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …
Page 18: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 19: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …
Page 20: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 21: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …
Page 22: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOSPROTECTIONPROVIDERS

VICTIMSNETWORK

OPERATORS+

CERT/CSIRTACADEMIA

LAWENFORCEMENT

AGENCIES

Page 23: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

ONE EXTRA ELEMENT…

Page 24: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOS OPEN THREAT SIGNALING (DOTS) [IETF]

Page 25: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DDOS OPEN THREAT SIGNALING (DOTS) [IETF]

Page 26: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DEMO:USING THE DDOS DISSECTOR

Page 27: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

DEMO:QUERYING DDOSDB

Page 28: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

[THE CURRENT]DEPLOYMENT & GOVERNANCE

Page 29: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

TIMELIME

2019

2018

?2017

Page 30: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

https://github.com/ddos-clearing-house https://ddosdb.ORG https://ddosdb.NL

Page 31: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

CHALLENGES & FUTURE DIRECTIONS

Page 32: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

.org .nl

Page 33: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

.org.nl.it

Page 34: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

QUESTIONS?

SOLVING DDOS ATTACKSKoen van Hove

Researcher at the University of [email protected]

Page 35: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

BACKUP SLIDES

Page 36: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

NETWORK MEASUREMENT (PCAP, NET FLOW, IPFIX, SFLOW, LOGS, …)DDOS_DISSECTORINPUT: NETWORK MEASUREMENTOUTPUT: DDOS FINGERPRINT (+*NOTES)

FILTERED AND ANONYMIZED NETW. MEASU.DDOS_FINGERPRINT_CONVERTERSINPUT: DDOS FINGERPRINTOUTPUT: RULE/SIGNATURE FOR SPECIFIC HW/SW SOLUTION(S)(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …)DDOSDBSTORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO

Page 37: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

SOLVING DDOS ATTACKS FACILITATING BRIDGING SOLUTIONS AND STAKEHOLDERS

DDOS CLEARING HOUSEIN THE NETHERLANDS, EUROPE, AND BEYOND

3/03/2019

Page 38: IN THE NETHERLANDS, EUROPE, AND BEYOND(SNORT, SURICATA, BRO, IPTABLES, EBPF, BGP FLOWSPEC, …) DDOSDB STORE, ENRICH, AND DISTRIBUTE DDOS ATTACK RELATED INFO DDOS PROTECTION …

https://www.zdn

et.com

/article/the-av

erag

e-dd

os-atta

ck-cos

t-for-bus

inesses-ris

es-to

-ove

r

WHAT IS THE AVERAGE ECONOMIC LOSS PER DDOS ATTACK?A. $25.000 C. $2.500.000

D. $25.000.000B. $250.000


flowspec @ APF 2013

flowspec @ APF 2013

Technology
Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec

Обеспечение безопасности сети оператора связи с помощью BGP FlowSpec

Technology
Meet cute-between-ebpf-and-tracing

Meet cute-between-ebpf-and-tracing

Software
DDoS Mitigation using BGP Flowspec(PDF) - Meet us in ... · 14 Copyright © 2014 Juniper Networks, Inc. Intra-domain DDoS Mitigation Using Flowspec ... 18 Copyright © 2014 Juniper

DDoS Mitigation using BGP Flowspec(PDF) - Meet us in ... · 14 Copyright © 2014 Juniper Networks, Inc. Intra-domain DDoS Mitigation Using Flowspec ... 18 Copyright © 2014 Juniper

Documents
BGP Flowspec atnog

BGP Flowspec atnog

Documents
EBPF - Rodenticide Resistance Action Commitee: Homerrac.info/content/uploads/CEFIC-EBPF-RWG-Guideline-Best-Practice-for... · The European Biocidal Products Forum (EBPF) currently

EBPF - Rodenticide Resistance Action Commitee: Homerrac.info/content/uploads/CEFIC-EBPF-RWG-Guideline-Best-Practice-for... · The European Biocidal Products Forum (EBPF) currently

Documents
Scalable DDoS mitigation using BGP Flowspec - APNIC · PDF file© 2010 Cisco and/or its affiliates. All rights reserved. Scalable DDoS mitigation using BGP Flowspec! Wei Yin TAY Consulting

Scalable DDoS mitigation using BGP Flowspec - APNIC · PDF file© 2010 Cisco and/or its affiliates. All rights reserved. Scalable DDoS mitigation using BGP Flowspec! Wei Yin TAY Consulting

Documents
PLNOG 13: Krzysztof Mazepa: BGP FlowSpec

PLNOG 13: Krzysztof Mazepa: BGP FlowSpec

Internet
Scalable DDoS mitigation · •Scalable DDoS Mitigation –BGP FlowSpec •Cloud DDoS Protection –F5 Silverline. DDoS Overview • Distributed denial-of‐service (DDoS) attacks

Scalable DDoS mitigation · •Scalable DDoS Mitigation –BGP FlowSpec •Cloud DDoS Protection –F5 Silverline. DDoS Overview • Distributed denial-of‐service (DDoS) attacks

Documents
BGP FlowSpec Design, Configuration and …d2zmdbbm9feqrf.cloudfront.net/2015/anz/pdf/BRKSPG-2618.pdfBGP FlowSpec Design, Configuration and Troubleshooting in IOS XR BRKSPG-2618 Nicolas

BGP FlowSpec Design, Configuration and …d2zmdbbm9feqrf.cloudfront.net/2015/anz/pdf/BRKSPG-2618.pdfBGP FlowSpec Design, Configuration and Troubleshooting in IOS XR BRKSPG-2618 Nicolas

Documents
DDoS ein unterschätztes Risiko? - Digicomp … · DDoS Defense Lösung aus der Cloud (Cloudflare, Akamai etc.) Verteilung des Datenverkehrs mit BGP / DNS / Flowspec On Demand oder

DDoS ein unterschätztes Risiko? - Digicomp … · DDoS Defense Lösung aus der Cloud (Cloudflare, Akamai etc.) Verteilung des Datenverkehrs mit BGP / DNS / Flowspec On Demand oder

Documents
Security Monitoring with eBPF

Security Monitoring with eBPF

Engineering
Flowspec - APNICconference.apnic.net/data/36/flowspec-apnic_1377757122.pdf · 2018. 1. 23. · • ExaBGP support too. 3! Operational • Configure rules on route server (config

Flowspec - APNICconference.apnic.net/data/36/flowspec-apnic_1377757122.pdf · 2018. 1. 23. · • ExaBGP support too. 3! Operational • Configure rules on route server (config

Documents
Security Monitoring with eBPF - Brendan Gregg · Security Monitoring with eBPF. The Brief. Extended Berkley Packet Filter (eBPF) is a new Linux feature which allows safe and ... This

Security Monitoring with eBPF - Brendan Gregg · Security Monitoring with eBPF. The Brief. Extended Berkley Packet Filter (eBPF) is a new Linux feature which allows safe and ... This

Documents
The adventures of a Suricate in eBPF land · 1 eBPF technology 2 Suricata meets eBPF 3 AF_PACKET bypass via eBPF 4 Conclusion É. Leblond (Stamus Networks) The adventures of a Suricate

The adventures of a Suricate in eBPF land · 1 eBPF technology 2 Suricata meets eBPF 3 AF_PACKET bypass via eBPF 4 Conclusion É. Leblond (Stamus Networks) The adventures of a Suricate

Documents
Denial of Service - users.informatik.haw-hamburg.deais/2016ss/Muster_Praesi/... · BGP Flow Specification e. DDoS-Mitigation mit BGP Flowspec f. DDoS-Mitigation mit BGP Flowspec und

Denial of Service - users.informatik.haw-hamburg.deais/2016ss/Muster_Praesi/... · BGP Flow Specification e. DDoS-Mitigation mit BGP Flowspec f. DDoS-Mitigation mit BGP Flowspec und

Documents
The Next Linux Superpower: eBPF Primer

The Next Linux Superpower: eBPF Primer

Software
Performance Analysis Superpowers with Linux eBPF

Performance Analysis Superpowers with Linux eBPF

Documents
NAT44 at NTNU - Uninett at NTNU_0.pdf · –ASR supports BGP FlowSpec •Potential cooperation with NREN (or NorduNET) for DDoS mitigation. 16 Performance • Tested by Uninett using

NAT44 at NTNU - Uninett at NTNU_0.pdf · –ASR supports BGP FlowSpec •Potential cooperation with NREN (or NorduNET) for DDoS mitigation. 16 Performance • Tested by Uninett using

Documents
Staring into the eBPF Abyss

Staring into the eBPF Abyss

Software
DDoS Mitigation - archive.nanog.org · bgp group "CUST-FLOWSPEC" neighbor 192.0.2.1 family ipv4 flow-ipv4 peer-as 64511 no flowspec-validate exit exit no shutdown exit Exit router

DDoS Mitigation - archive.nanog.org · bgp group "CUST-FLOWSPEC" neighbor 192.0.2.1 family ipv4 flow-ipv4 peer-as 64511 no flowspec-validate exit exit no shutdown exit Exit router

Documents
Implementing BGP Flowspec at IP transit network

Implementing BGP Flowspec at IP transit network

Internet
gobpf - utilizing eBPF from Go

gobpf - utilizing eBPF from Go

Documents
The use of BGP Flowspec in the protection against DDoS attackskth.diva-portal.org/smash/get/diva2:1417085/FULLTEXT01.pdf · Flowspec is one of the latest DDoS attacks mitigation tools

The use of BGP Flowspec in the protection against DDoS attackskth.diva-portal.org/smash/get/diva2:1417085/FULLTEXT01.pdf · Flowspec is one of the latest DDoS attacks mitigation tools

Documents
eBPF - Android Reverse Engineering Superpowers

eBPF - Android Reverse Engineering Superpowers

Documents
BGP FlowSpec Design, Configuration and Troubleshooting in ... Live... · BGP FlowSpec Design, Configuration and Troubleshooting in IOS XR BRKSPG-2618 Nicolas Fevrier, SP Routing Technical

BGP FlowSpec Design, Configuration and Troubleshooting in ... Live... · BGP FlowSpec Design, Configuration and Troubleshooting in IOS XR BRKSPG-2618 Nicolas Fevrier, SP Routing Technical

Documents
Bringing the Power of eBPF to Open vSwitch - Linux kernelvger.kernel.org/lpc_net2018_talks/ovs-ebpf-lpc18-presentation.pdf · What is eBPF? •An in-kernel virtual machine •Users

Bringing the Power of eBPF to Open vSwitch - Linux kernelvger.kernel.org/lpc_net2018_talks/ovs-ebpf-lpc18-presentation.pdf · What is eBPF? •An in-kernel virtual machine •Users

Documents
AUTOMATION OF DDOS ATTACK MITIGATION€¦ · •Fastnetmon, DDoS Defender modules: Scripts validating the attacks data, parsing and sending them to NETX using API or Flowspec. •Testing

AUTOMATION OF DDOS ATTACK MITIGATION€¦ · •Fastnetmon, DDoS Defender modules: Scripts validating the attacks data, parsing and sending them to NETX using API or Flowspec. •Testing

Documents
Demystify eBPF JIT Compiler - Open-NFP · 2019-02-27 · What is an eBPF JIT Compiler? eBPF representation Ø Designed to be set of instructions and are close to x86-64, AArch64 etc

Demystify eBPF JIT Compiler - Open-NFP · 2019-02-27 · What is an eBPF JIT Compiler? eBPF representation Ø Designed to be set of instructions and are close to x86-64, AArch64 etc

Documents
eBPF Offload Getting Started Guide - Netronome

eBPF Offload Getting Started Guide - Netronome

Documents