F5 Firewall Solutions > [Archive1] AFM - The Data Center Firewall > Lab 3 - AFM DDoS Lab Source | Edit on
Detecting and Preventing DNS DoS Attacks on a Virtual Server¶
It is day two of your career at Initech, and you are under attack!! You walk into the office on day two only to learn your DNS servers are being attacked by Joanna who took out her flair frustrations on your DNS servers. Before you can protect the servers however, you must first tune and configure them appropriately. (The most challenging part of DoS based protection is tuning correctly).
In this section of the lab, we’ll focus on creating DOS profiles that we can assign to virtual servers for protection. Let’s get started!
- Base BIG-IP Configuration
- Establishing a DNS server baseline
- Configuring a DoS Logging Profile
- Configuring a DoS Profile
- Attaching a DoS Profile
- Simulate a DNS DDoS Attack
- DNS DDoS Mitigations for Continued Service
- Bad Actor Detection
- Remote Triggered Black Holing
- Silverline Mitigation
- Filtering specific DNS operations