International Journal of Engineering Research and Development e-ISSN: 2278-067X, p-ISSN: 2278-800X, www.ijerd.com Volume 11, Issue 09 (September 2015), PP.20-27
A Novel Method for Prevention of Bandwidth Distributed Denial of Service Attacks S. Anil Kumar1, G. Dayanandam2, Dr. T. V. Rao3 1
2
Department of CSE, QISCET, Ongole, Andhra Pradesh, INDIA Department of CSE, Research Scholar, ANUCET, Guntur, Andhra Pradesh, INDIA 3 Department of CSE, PVPSIT, Vijayawada, Andhra Pradesh, INDIA
Abstract:- Distributed Denial of Service (DDoS) Attacks became a massive threat to the Internet. Traditional Architecture of internet is vulnerable to the attacks like DDoS. Attacker primarily acquire his army of Zombies, then that army will be instructed by the Attacker that when to start an attack and on whom the attack should be done. In this paper, different techniques which are used to perform DDoS Attacks, Tools that were used to perform Attacks and Countermeasures in order to detect the attackers and eliminate the Bandwidth Distributed Denial of Service attacks (B-DDoS) are reviewed. DDoS Attacks were done by using various Flooding techniques which are used in DDoS attack. The main purpose of this paper is to design an architecture which can reduce the Bandwidth Distributed Denial of service Attack and make the victim site or server available for the normal users by eliminating the zombie machines. Our Primary focus of this paper is to dispute how normal machines are turning into zombies (Bots), how attack is been initiated, DDoS attack procedure and how an organization can save their server from being a DDoS victim. In order to present this we implemented a simulated environment with Cisco switches, Routers, Firewall, some virtual machines and some Attack tools to display a real DDoS attack. By using Time scheduling, Resource Limiting, System log, Access Control List and some Modular policy Framework we stopped the attack and identified the Attacker (Bot) machines. Keywords:- Simulation, Network Security, Botnet, DoS, DDoS, BW-DDoS, Firewall.
I.
INTRODUCTION
Denial of Service (DoS) Attack means from one machine sending continuous packets of unwanted information to a server or a website. When multiple compromised machines (Zombies / Bots) try to perform DoS attack individually is called as DDoS Attack. In recent years the Bandwidth Distributed Denial of Service Attack’s volume has been recorded as 300 Gbps [1]. When compared with the Q4 of 2014 and Q1 of 2015 found 35 percent increase in DDoS activity against customers, more than double number of attackers was recorded in 2015. According to the year 2014 Q4 DDoS Bandwidth has reached to 400 Gbps[2]. In 2015 Q1 DDoS attack reports the top 10 source countries which are actively participating in DDoS Attack are shown in Figure - 1.
Fig. 1. Top 10 countries for DDoS attacks in 2015 Q1
20