Mitigating Denial-of-Service Attacks Using Next-Generation Firewalls

This research explores the detection and mitigation of Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) attacks through Next-Generation Firewalls. The study delves into the characteristics, challenges, and solutions related to DoS/DDoS threats, emphasizing the importance of implementing effective mitigation practices. It discusses the purpose, introduction, problem description, background information, and a proposed solution with hands-on exercises using PaloAlto Next-Generation Firewalls.

• DoS attacks
• DDoS attacks
• Next-Generation Firewalls
• Cybersecurity
• Threat Mitigation

aily_993 Follow

Uploaded on Mar 12, 2025 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

Presentation Transcript

1. Understanding, Detecting, and Mitigating Denial-of- Service Attacks Using Next-Generation Firewalls Brian Nelson, Dakota McDaniels Department of Integrated Information Technology University of South Carolina December 1st, 2020 1

2. Agenda Purpose Introduction Problem description Background information Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) Attacks Next-generation Firewalls (NGFWs) Proposed solution and implementation Conclusion 2

3. Purpose Understand DoS/DDoS Understand mitigation of DoS/DDoS Implement mitigation practices Observe mitigation in effect 3

4. Introduction Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) are a leading threat to many businesses, government entities, and citizens Characteristics of DoS attacks Characteristics of DDoS attacks Simple to complete Require multiple attackers Effective against small networks/ single target Usually a botnet Effective against small or large networks Detection is not difficult Detection is not difficult Damage/risk potential is low Mitigation can be complicated Damage/risk potential is high 4

5. Problem Description Volatile network connectivity Random disruptions of services Suspected malicious activity Figure 1.Effectiveness of DDoS Filtering on Next-Generation Firewalls - Topology Currently, there are no measures taken for threat detection and mitigation 5

6. Background Information Next-Generation firewalls Configuration Objects Policies TCP/IP and OSI model Figure 2.TCP/IP Model: Layers & Protocol: What is TCP IP Stack? (n.d.). Retrieved November 12, 2020, from https://www.guru99.com/tcp-ip-model.html. 6

7. Proposed Solution and Implementation PaloAlto Next-Generation Firewall Configure the firewall mitigation measures Configure detection methods View and understand logs Configure DoS Protection Object and Policy View mitigation Logs Hands-on exercise 7

8. Conclusion Why is this work important? Future projects/concepts with this knowledge Questions? Thank you for listening and watching 8