Helping NRENs defend against DDoS and other malicious attacks
Firewall on Demand (FoD) is a powerful system which allows authorised users, via a web portal, to quickly create and disseminate firewall filters based on traffic flows to or from their designated address space. This system allows NRENs to filter and block malicious traffic flows from within the GÉANT backbone giving NRENs unprecedented power and control.
FoD’s key features are:
- Precision – specific malicious flows can be targeted
- Speed – Time to disseminate/withdraw firewall filters is sub 10 seconds
- Convenience – NREN users can use web portal themselves, or make request by phone or e-mail.
- Simplicity – The web portal uses intuitive, non-vendor specific GUI-based wizard to configure router firewall filters.
FoD is powered by standards-based flowspec technology as specified in RFC 5575.
The ability for NRENs to extend their control of traffic across the GÉANT backbone is a uniquely powerful feature of the partnership between NRENs and GÉANT.
For more information on Firewall on Demand, download the FoD user guide, or request subscription
FoD user guide
FoD v1.5 user guide