Distributed Denial of Service (DDoS) attacks are an increasing threat to organisations in terms of both frequency and complexity. There are many different types of DDoS attacks, which makes mitigation just as complex. Virtually all attacks attempt to overcharge systems through rogue internet traffic, crippling a particular server, online service or network. For example, cybercriminals can make websites or online applications temporarily unavailable. 

As one of the largest "scrubbing centres" in Europe, NaWas, the anti-DDoS service of the National Internet Service Providers Foundation (NBIP), provides on-demand protection against such attacks. The service was created 10 years ago as an initiative by a group of ISPs who wanted to collectively address the problem of DDoS. The service now has more than 130 participants who are all active in the internet world and, as a result, there is a great concentration of knowledge and experience at the NaWas. To mitigate DDoS attacks, the service uses centrally managed advanced anti-DDoS equipment. Every day, the engineers at the NaWas ensure that the system is geared up for the latest types of attacks.  

Connection to BNIX

Now that NaWas is connected to BNIX, customers of the Belgian Internet hub - some 70 national and international content providers, Internet service providers and hosting companies - can also purchase this service from NaWas via a private VLAN.

If they are attacked, the traffic is routed to NaWas' network via BGP and the mitigation process starts. The rogue traffic is filtered and the clean traffic is then routed back over a private VLAN from BNIX to the customer. Meanwhile, the client's systems and services remain available as usual during the attack. Once the DDoS attack stops, the "BGP announcement" can be reversed and all traffic returns to the client as normal. 

Frank Dupker, European Network Manager of NaWas adds: "This partnership is great news but not only for new potential BNIX customers. A second connection via BNIX, in addition to their existing connection to AMS-IX or another IX based in the Netherlands, can provide a redundant set-up for existing NaWas participants based in Belgium too."

Frédéric Libotte, Senior Relationship Manager at BNIX continues: "By offering NaWas on BNIX, we are offering our participants the opportunity to make the most of their port and are also helping to make the Belgian Internet more secure."