Denial of Service attacks is the most lethal family of infrastruc- ture attacks known to the Internet. DoS and Distributed DoS has in the past brought down the most secure services on the Internet. DoS are attacks that choke the bandwidth connecting the target to the Internet. These attacks are performed by flood- ing the pipe with large packet fragments.

Since DoS attacks are not targeting a vulnerability or a configu- ration error it is very difficult to block out such attacks. Hence NetMonastery uses a Traffic Anomaly System that is only applied when there is a flood of traffic flowing into the network. To avoid false positives the Traffic Anomaly System uses a static profiler that continuously profiles the flow of traffic in and out of the network.

This system helps you to prevent DoS attacks on your down- stream clients and hence can further decrease estimated downtime caused by such organised infrastructure attacks.