
	Home > Ask the Security Experts > Network Security Questions & Answers > How to prevent a denial-of-service (DoS) attack

Ask The Security Expert: Questions & Answers

EMAIL THIS

How to prevent a denial-of-service (DoS) attack

EXPERT RESPONSE FROM: Mike Chapple, featured expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 12 June 2009
Is it possible to prevent denial-of-service (DoS) attacks from affecting an enterprise network? If so, how can it be done?

BROWSE BY TAG

Network Security, Network Intrusion Detection and Analysis, Enterprise Network Security, Denial of Service (DoS) Attack Prevention, Security Event Management, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Network Security
	How to set up a split-tunnel VPN in Windows Vista
	What is the difference between static and dynamic network validation?
	Port scan attack prevention best practices
	Securing the intranet with remote access VPN security
	How to prevent network sniffing and eavesdropping
	How to implement virtual firewalls in a complex network infrastructure
	How to manage network bandwidth with distributed ISP bandwidth
	How to edit group policy objects to give a user local admin rights
	How to prevent operating system cloning with AES 256-bit encryption
	How to securely connect a LAN POS to a remote point-of-sale device

Denial of Service (DoS) Attack Prevention

VeriSign extends DDoS attack protection service

Conficker authors prepping for next stage, researcher says

Latest DDoS attacks extremely unsophisticated, experts say

DDoS attacks hit U.S., South Korean government websites

I'll be watching you: Wireless IPS

How to prevent DDoS attacks on websites

How to prevent network denial-of-service attacks

What are 'phlashing' attacks?

Could someone place a rootkit on an internal network through a router?

Black Hat 2007: Estonian attacks were a cyber riot, not warfare

Denial of Service (DoS) Attack Prevention Research

Security Event Management

Network traffic collection, analysis helps prevent data breaches

Best Security Information and Event Management Products

Understanding PCI DSS compliance requirements for log management

Data breach notification legislation: What info must be released?

Mature SIMs do more than log aggregation and correlation

The top 5 network security practices

SIMs tools and tactics for business intelligence

SIEM: Not for small business, nor the faint of heart

Should IDS and SIM/SEM/SIEM be used for network intrusion monitoring?

Tying log management and identity management shortens incident response

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

Electrohippies Collective (SearchSecurity.com)

packet monkey (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

In short: no. There's no way to completely protect your network from denial-of-service attacks, especially with the prevalence of distributed denial-of-service (DDoS) attacks on the Internet today. It's extremely difficult to differentiate an attack request from a legitimate request because they often use the same protocols/ports and may resemble each other in content.

However, there are some things you can do to reduce your risk:

Purchase a lot of bandwidth. This is not only the easiest solution, but also the most expensive. If you simply have tons of bandwidth, it makes perpetrating a DoS attack much more difficult because it's more bandwidth that an attacker has to clog.
Use DoS attack detection technology. Intrusion prevention system and firewall manufacturers now offer DoS protection technologies that include signature detection and connection verification techniques to limit the success of DoS attacks.
Prepare for DoS response. The use of throttling and rate-limiting technologies can reduce the effects of a DoS attack. One such response mode stops all new inbound connections in the event of a DoS attack, allowing established connections and new outbound connections to continue.

DoS protection is more art than science, requiring a combination of techniques to limit the impact of such an attack on your organization. Good luck!

For more information:

Get further advice on preventing DoS attacks.
Looking to prevent distributed denial-of-service (DDoS) attacks? Read more.

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy