Abstract

Distributed Denial of Service (DDoS) information is extended to a network Path Computation Element (PCE). The PCE uses a network function Segment Identifier (SID), referred to herein as a DDoS SID, imposed on the edge routers by the PCE, to identify potentially suspicious DDoS traffic. The DDoS SID is used in Segment Routing (SR) routers to direct suspicious traffic to nearby or specially optimized DDoS scrubbing engines so that traffic may be cleaned. Other traffic flows proceed unchanged through the network.

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 License.

Recommended Citation

Barton, Robert; Henry, Jerome; and Sivabalan, Siva, "TRAFFIC REDIRECTION WITH DISTRIBUTED DENIAL OF SERVICE SEGMENT IDENTIFIERS", Technical Disclosure Commons, (May 14, 2018)
https://www.tdcommons.org/dpubs_series/1200

Download

COinS

Technical Disclosure Commons

Defensive Publications Series

TRAFFIC REDIRECTION WITH DISTRIBUTED DENIAL OF SERVICE SEGMENT IDENTIFIERS

Abstract

Creative Commons License

Recommended Citation

Browse

Search

Submit

Additional Information

Technical Disclosure Commons

Defensive Publications Series

TRAFFIC REDIRECTION WITH DISTRIBUTED DENIAL OF SERVICE SEGMENT IDENTIFIERS

Inventor(s)

Abstract

Creative Commons License

Recommended Citation

Share

Browse

Search

Submit

Additional Information